Fedora 14 Update: mingetty-1.08-5.fc14
updates at fedoraproject.org
updates at fedoraproject.org
Thu Nov 4 23:31:51 UTC 2010
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-16834
2010-10-28 05:05:15
--------------------------------------------------------------------------------
Name : mingetty
Product : Fedora 14
Version : 1.08
Release : 5.fc14
URL : http://sourceforge.net/projects/mingetty/
Summary : A compact getty program for virtual consoles only
Description :
The mingetty program is a lightweight, minimalist getty program for
use only on virtual consoles. Mingetty is not suitable for serial
lines (you should use the mgetty program in that case).
--------------------------------------------------------------------------------
Update Information:
In addition, deprecated syslog facility has been updated to modern LOG_AUTHPRIV constant
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 26 2010 Petr Pisar <ppisar at redhat.com> - 1.08-5
- Check chroot(), chdir(), and nice() (bug #635412)
- Open syslog with AUTPRIV facility
- Limit TTY name length to prevent buffer overflow (bug #551754)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #551754 - Buffer overflow in open_tty()
https://bugzilla.redhat.com/show_bug.cgi?id=551754
[ 2 ] Bug #635412 - unsafe chroot() calls in mingetty
https://bugzilla.redhat.com/show_bug.cgi?id=635412
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update mingetty' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list