You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa icoutils

Sigurnosni nedostaci programskog paketa icoutils

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

——————————————————————————–
Fedora Update Notification
FEDORA-2017-7c221d6f49
2017-01-17 15:59:22.499017
——————————————————————————–

Name : icoutils
Product : Fedora 24
Version : 0.31.1
Release : 1.fc24
URL : http://www.nongnu.org/icoutils/
Summary : Utility for extracting and converting Microsoft icon and cursor files
Description :
The icoutils are a set of programs for extracting and converting images in
Microsoft Windows icon and cursor files. These files usually have the
extension .ico or .cur, but they can also be embedded in executables or
libraries.

——————————————————————————–
Update Information:

This new point release fixes a security vulnerability in wrestool. For further
details see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=850017
——————————————————————————–
References:

[ 1 ] Bug #1411251 – CVE-2017-5208 icoutils: Check_offset overflow on 64-bit systems
https://bugzilla.redhat.com/show_bug.cgi?id=1411251
[ 2 ] Bug #1412263 – CVE-2017-5332 icoutils: Access to unallocated memory possible in extract.c
https://bugzilla.redhat.com/show_bug.cgi?id=1412263
[ 3 ] Bug #1412259 – CVE-2017-5333 icoutils: Integer overflow vulnerability in extract.c
https://bugzilla.redhat.com/show_bug.cgi?id=1412259
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade icoutils’ at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

——————————————————————————–
Fedora Update Notification
FEDORA-2017-3d7734a8b2
2017-01-17 15:59:37.262411
——————————————————————————–

Name : icoutils
Product : Fedora 25
Version : 0.31.1
Release : 1.fc25
URL : http://www.nongnu.org/icoutils/
Summary : Utility for extracting and converting Microsoft icon and cursor files
Description :
The icoutils are a set of programs for extracting and converting images in
Microsoft Windows icon and cursor files. These files usually have the
extension .ico or .cur, but they can also be embedded in executables or
libraries.

——————————————————————————–
Update Information:

This new point release fixes a security vulnerability in wrestool. For further
details see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=850017
——————————————————————————–
References:

[ 1 ] Bug #1411251 – CVE-2017-5208 icoutils: Check_offset overflow on 64-bit systems
https://bugzilla.redhat.com/show_bug.cgi?id=1411251
[ 2 ] Bug #1412259 – CVE-2017-5333 icoutils: Integer overflow vulnerability in extract.c
https://bugzilla.redhat.com/show_bug.cgi?id=1412259
[ 3 ] Bug #1412263 – CVE-2017-5332 icoutils: Access to unallocated memory possible in extract.c
https://bugzilla.redhat.com/show_bug.cgi?id=1412263
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade icoutils’ at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

AutorMarko Stanec
Cert idNCERT-REF-2017-01-0071-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
Izvorhttp://www.adobe.com/
Top