You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa BuildBot

Sigurnosni nedostatak programskog paketa BuildBot

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

——————————————————————————–
Fedora Update Notification
FEDORA-2019-7e722314f3
2019-02-11 01:57:13.947138
——————————————————————————–

Name : buildbot
Product : Fedora 29
Version : 1.8.1
Release : 1.fc29
URL : https://buildbot.net
Summary : Build/test automation system
Description :
The BuildBot is a system to automate the compile/test cycle required by
most software projects to validate code changes. By automatically
rebuilding and testing the tree each time something has changed, build
problems are pinpointed quickly, before other developers are
inconvenienced by the failure.

——————————————————————————–
Update Information:

Update to 1.8.1 to fix CVE-2019-7313
——————————————————————————–
ChangeLog:

* Sat Feb 9 2019 Neal Gompa <ngompa13@gmail.com> – 1.8.1-1
– Update to 1.8.1
* Thu Jan 31 2019 Fedora Release Engineering <releng@fedoraproject.org> – 1.7.0-2
– Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Sat Dec 22 2018 Neal Gompa <ngompa13@gmail.com> – 1.7.0-1
– Update to 1.7.0
* Tue Dec 11 2018 Neal Gompa <ngompa13@gmail.com> – 1.6.0-2
– Add www subpackage with frontend components
* Wed Dec 5 2018 Igor Gnatenko <ignatenkobrain@fedoraproject.org> – 1.6.0-1
– Update to 1.6.0
——————————————————————————–
References:

[ 1 ] Bug #1672293 – CVE-2019-7313 buildbot: Improper neutralization of CRLF sequences
https://bugzilla.redhat.com/show_bug.cgi?id=1672293
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2019-7e722314f3’ at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org

——————————————————————————–
Fedora Update Notification
FEDORA-2019-7eb8c71fe8
2019-02-11 01:27:45.497860
——————————————————————————–

Name : buildbot
Product : Fedora 28
Version : 1.8.1
Release : 1.fc28
URL : https://buildbot.net
Summary : Build/test automation system
Description :
The BuildBot is a system to automate the compile/test cycle required by
most software projects to validate code changes. By automatically
rebuilding and testing the tree each time something has changed, build
problems are pinpointed quickly, before other developers are
inconvenienced by the failure.

——————————————————————————–
Update Information:

Update to 1.8.1 to fix CVE-2019-7313
——————————————————————————–
ChangeLog:

* Sat Feb 9 2019 Neal Gompa <ngompa13@gmail.com> – 1.8.1-1
– Update to 1.8.1
* Thu Jan 31 2019 Fedora Release Engineering <releng@fedoraproject.org> – 1.7.0-2
– Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Sat Dec 22 2018 Neal Gompa <ngompa13@gmail.com> – 1.7.0-1
– Update to 1.7.0
* Tue Dec 11 2018 Neal Gompa <ngompa13@gmail.com> – 1.6.0-2
– Add www subpackage with frontend components
* Wed Dec 5 2018 Igor Gnatenko <ignatenkobrain@fedoraproject.org> – 1.6.0-1
– Update to 1.6.0
* Fri Jul 20 2018 Igor Gnatenko <ignatenkobrain@fedoraproject.org> – 1.3.0-1
– Update to 1.3.0
* Thu Jul 12 2018 Fedora Release Engineering <releng@fedoraproject.org> – 1.1.0-2
– Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
——————————————————————————–
References:

[ 1 ] Bug #1672293 – CVE-2019-7313 buildbot: Improper neutralization of CRLF sequences
https://bugzilla.redhat.com/show_bug.cgi?id=1672293
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2019-7eb8c71fe8’ at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org

AutorJosip Papratovic
Cert idNCERT-REF-2019-02-0001-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
IzvorAdobe
Top
More in Preporuke
Sigurnosni nedostaci programskog paketa mosquitto

Otkriveni su sigurnosni nedostaci u programskom paketu Mosquitto za operacijski sustav Debian. Otkriveni nedostaci potencijalnim napadačima omogućuju zaobilaženje sigurnosnih ograničenja....

Close