You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa rpm

Sigurnosni nedostaci programskog paketa rpm

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

——————————————————————————–
Fedora Update Notification
FEDORA-2016-927aade89c
2016-05-21 20:21:20.852368
——————————————————————————–

Name : rpm
Product : Fedora 22
Version : 4.12.0.1
Release : 17.fc22
URL : http://www.rpm.org/
Summary : The RPM package management system
Description :
The RPM Package Manager (RPM) is a powerful command line driven
package management system capable of installing, uninstalling,
verifying, querying, and updating software packages. Each software
package consists of an archive of files along with information about
the package like its version, a description, etc.

——————————————————————————–
Update Information:

* Fix sigsegv in stringFormat() (rhbz:1316903) * Fix reading rpmtd behind its
size in formatValue() (rhbz:1316896)
——————————————————————————–
References:

[ 1 ] Bug #1316903 – rpm: Null pointer dereference in rstrdup
https://bugzilla.redhat.com/show_bug.cgi?id=1316903
[ 2 ] Bug #1316896 – rpm: Out-of-bounds heap read triggered by crafted RPM file
https://bugzilla.redhat.com/show_bug.cgi?id=1316896
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update rpm’ at the command line.
For more information, refer to “Managing Software with yum”,
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
http://lists.fedoraproject.org/admin/lists/package-announce@lists.fedoraproject.org

AutorMarijo Plepelic
Cert idNCERT-REF-2016-05-0017-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
Izvorhttp://www.adobe.com/
Top
More in Preporuke
Sigurnosni nedostaci programskog paketa wireshark

Otkriveni su sigurnosni nedostaci u programskom paketu wireshark. Otkriveni nedostaci se javljaju u disektorima PKTC, IAX2, GSM CBCH i NCP....

Close