[SECURITY] Fedora 22 Update: libreport-2.6.3-1.fc22
updates at fedoraproject.org
updates at fedoraproject.org
Wed Oct 28 16:29:09 UTC 2015
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-b81f7e1e86
2015-10-28 16:02:18.285008
--------------------------------------------------------------------------------
Name : libreport
Product : Fedora 22
Version : 2.6.3
Release : 1.fc22
URL : https://abrt.readthedocs.org/
Summary : Generic library for reporting various problems
Description :
Libraries providing API for reporting different problems in applications
to different bug targets like Bugzilla, ftp, trac, etc...
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2015-5302 abrt-2.6.1-6.fc22 - doc: fix default
DumpLocation in abrt.conf man page - abrt-retrace-client: use atoll for _size
conversion - a-a-a-ccpp-local don't delete build_ids - abrt-dump-xorg: support
Xorg log backtraces prefixed by (EE - bodhi: fix typo in error messages
libreport-2.6.3-1.fc22 - reporter-bugzilla: add parameter -p - fix save users
changes after reviewing dump dir files - bugzilla: don't attach build_ids -
rewrite event rule parser - ureport: improve curl's error messages - curl: add
posibility to use own Certificate Authority cert - Resolves CVE-2015-5302
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1270903 - CVE-2015-5302 libreport: Possible private data leak in Bugzilla bugs opened by ABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1270903
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update libreport' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list