[SECURITY] Fedora EPEL 7 Update: mingw-gnutls-3.3.14-1.el7
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2015-5832
2015-04-17 16:13:53
--------------------------------------------------------------------------------
Name : mingw-gnutls
Product : Fedora EPEL 7
Version : 3.3.14
Release : 1.el7
URL : http://www.gnutls.org/
Summary : MinGW GnuTLS TLS/SSL encryption library
Description :
GnuTLS TLS/SSL encryption library. This library is cross-compiled
for MinGW.
--------------------------------------------------------------------------------
Update Information:
Security fixes for CVE-2015-3308 and CVE-2015-2806
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1212459 - CVE-2015-3308 gnutls: use-after-free flaw in CRL distribution points parsing
https://bugzilla.redhat.com/show_bug.cgi?id=1212459
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update mingw-gnutls' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
9 years
Fedora EPEL 7 Update: libyuv-0-0.22.20121221svn522.el7
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2015-1444
2015-03-28 17:04:15
--------------------------------------------------------------------------------
Name : libyuv
Product : Fedora EPEL 7
Version : 0
Release : 0.22.20121221svn522.el7
URL : http://code.google.com/p/libyuv/
Summary : YUV conversion and scaling functionality library
Description :
This is an open source project that includes YUV conversion and scaling
functionality. Converts all webcam formats to YUV (I420). Convert YUV to
formats for rendering/effects. Rotate by 90 degrees to adjust for mobile
devices in portrait mode. Scale YUV to prepare content for compression,
with point, bilinear or box filter.
--------------------------------------------------------------------------------
Update Information:
- Initial build for EL7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #772217 - Review Request: libyuv - YUV conversion and scaling functionality library
https://bugzilla.redhat.com/show_bug.cgi?id=772217
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update libyuv' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
9 years
[SECURITY] Fedora EPEL 5 Update: clamav-0.98.7-1.el5
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2015-6081
2015-04-30 15:52:41
--------------------------------------------------------------------------------
Name : clamav
Product : Fedora EPEL 5
Version : 0.98.7
Release : 1.el5
URL : http://www.clamav.net/
Summary : Anti-virus software
Description :
Clam AntiVirus is a GPL anti-virus toolkit for UNIX. The main purpose of
this software is the integration with mail servers (attachment scanning).
The package provides a flexible and scalable multi-threaded daemon, a
command line scanner, and a tool for automatic updating via Internet.
The programs are based on a shared library distributed with the Clam
AntiVirus package, which you can use with your own software. Most
importantly, the virus database is kept up to date
--------------------------------------------------------------------------------
Update Information:
ClamAV 0.98.7
=============
This release contains new scanning features and bug fixes.
- Improvements to PDF processing: decryption, escape sequence handling, and file property collection.
- Scanning/analysis of additional Microsoft Office 2003 XML format.
- Fix infinite loop condition on crafted y0da cryptor file. Identified and patch suggested by Sebastian Andrzej Siewior. CVE-2015-2221.
- Fix crash on crafted petite packed file. Reported and patch supplied by Sebastian Andrzej Siewior. CVE-2015-2222.
- Fix false negatives on files within iso9660 containers. This issue was reported by Minzhuan Gong.
- Fix a couple crashes on crafted upack packed file. Identified and patches supplied by Sebastian Andrzej Siewior.
- Fix a crash during algorithmic detection on crafted PE file. Identified and patch supplied by Sebastian Andrzej Siewior.
- Fix an infinite loop condition on a crafted "xz" archive file. This was reported by Dimitri Kirchner and Goulven Guiheux. CVE-2015-2668.
- Fix compilation error after ./configure --disable-pthreads. Reported and fix suggested by John E. Krokes.
- Apply upstream patch for possible heap overflow in Henry Spencer's regex library. CVE-2015-2305.
- Fix crash in upx decoder with crafted file. Discovered and patch supplied by Sebastian Andrzej Siewior. CVE-2015-2170.
- Fix segfault scanning certain HTML files. Reported with sample by Kai Risku.
- Improve detections within xar/pkg files.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1217206 - CVE-2015-2221: clamav Infinite loop condition on crafted y0da cryptor file
https://bugzilla.redhat.com/show_bug.cgi?id=1217206
[ 2 ] Bug #1217207 - CVE-2015-2222 clamav: crash on crafted petite packed file
https://bugzilla.redhat.com/show_bug.cgi?id=1217207
[ 3 ] Bug #1217208 - CVE-2015-2668 clamav: Infinite loop condition on a crafted "xz" archive file
https://bugzilla.redhat.com/show_bug.cgi?id=1217208
[ 4 ] Bug #1217209 - CVE-2015-2170: clamav: Crash in upx decoder with crafted file
https://bugzilla.redhat.com/show_bug.cgi?id=1217209
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update clamav' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
9 years
[SECURITY] Fedora EPEL 6 Update: clamav-0.98.7-1.el6
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2015-6083
2015-04-30 15:52:44
--------------------------------------------------------------------------------
Name : clamav
Product : Fedora EPEL 6
Version : 0.98.7
Release : 1.el6
URL : http://www.clamav.net/
Summary : Anti-virus software
Description :
Clam AntiVirus is a GPL anti-virus toolkit for UNIX. The main purpose of
this software is the integration with mail servers (attachment scanning).
The package provides a flexible and scalable multi-threaded daemon, a
command line scanner, and a tool for automatic updating via Internet.
The programs are based on a shared library distributed with the Clam
AntiVirus package, which you can use with your own software. Most
importantly, the virus database is kept up to date
--------------------------------------------------------------------------------
Update Information:
ClamAV 0.98.7
=============
This release contains new scanning features and bug fixes.
- Improvements to PDF processing: decryption, escape sequence handling, and file property collection.
- Scanning/analysis of additional Microsoft Office 2003 XML format.
- Fix infinite loop condition on crafted y0da cryptor file. Identified and patch suggested by Sebastian Andrzej Siewior. CVE-2015-2221.
- Fix crash on crafted petite packed file. Reported and patch supplied by Sebastian Andrzej Siewior. CVE-2015-2222.
- Fix false negatives on files within iso9660 containers. This issue was reported by Minzhuan Gong.
- Fix a couple crashes on crafted upack packed file. Identified and patches supplied by Sebastian Andrzej Siewior.
- Fix a crash during algorithmic detection on crafted PE file. Identified and patch supplied by Sebastian Andrzej Siewior.
- Fix an infinite loop condition on a crafted "xz" archive file. This was reported by Dimitri Kirchner and Goulven Guiheux. CVE-2015-2668.
- Fix compilation error after ./configure --disable-pthreads. Reported and fix suggested by John E. Krokes.
- Apply upstream patch for possible heap overflow in Henry Spencer's regex library. CVE-2015-2305.
- Fix crash in upx decoder with crafted file. Discovered and patch supplied by Sebastian Andrzej Siewior. CVE-2015-2170.
- Fix segfault scanning certain HTML files. Reported with sample by Kai Risku.
- Improve detections within xar/pkg files.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1217206 - CVE-2015-2221: clamav Infinite loop condition on crafted y0da cryptor file
https://bugzilla.redhat.com/show_bug.cgi?id=1217206
[ 2 ] Bug #1217207 - CVE-2015-2222 clamav: crash on crafted petite packed file
https://bugzilla.redhat.com/show_bug.cgi?id=1217207
[ 3 ] Bug #1217208 - CVE-2015-2668 clamav: Infinite loop condition on a crafted "xz" archive file
https://bugzilla.redhat.com/show_bug.cgi?id=1217208
[ 4 ] Bug #1217209 - CVE-2015-2170: clamav: Crash in upx decoder with crafted file
https://bugzilla.redhat.com/show_bug.cgi?id=1217209
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update clamav' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
9 years
[SECURITY] Fedora EPEL 6 Update: cherokee-1.2.103-6.el6
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2015-5859
2015-04-17 16:15:15
--------------------------------------------------------------------------------
Name : cherokee
Product : Fedora EPEL 6
Version : 1.2.103
Release : 6.el6
URL : http://www.cherokee-project.com/
Summary : Flexible and Fast Webserver
Description :
Cherokee is a very fast, flexible and easy to configure Web Server. It supports
the widespread technologies nowadays: FastCGI, SCGI, PHP, CGI, TLS and SSL
encrypted connections, Virtual hosts, Authentication, on the fly encoding,
Apache compatible log files, and much more.
--------------------------------------------------------------------------------
Update Information:
Resolves bz 1114463 - CVE-2014-4668 cherokee: authentication bypass when LDAP server allows unauthenticated binds
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1114460 - CVE-2014-4668 cherokee: authentication bypass when LDAP server allows unauthenticated binds
https://bugzilla.redhat.com/show_bug.cgi?id=1114460
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update cherokee' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
9 years
Fedora EPEL 6 Update: SDL_mixer-1.2.12-1.el6
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2015-5858
2015-04-17 16:15:14
--------------------------------------------------------------------------------
Name : SDL_mixer
Product : Fedora EPEL 6
Version : 1.2.12
Release : 1.el6
URL : http://www.libsdl.org/projects/SDL_mixer/
Summary : Simple DirectMedia Layer - Sample Mixer Library
Description :
A simple multi-channel audio mixer for SDL. It supports 4 channels of
16 bit stereo audio, plus a single channel of music, mixed by the popular
MikMod MOD, Timidity MIDI and Ogg Vorbis libraries.
--------------------------------------------------------------------------------
Update Information:
To support an update to wesnoth.
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update SDL_mixer' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
9 years
Fedora EPEL 6 Update: softhsm-1.3.5-2.el6
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2015-5777
2015-04-14 20:24:46
--------------------------------------------------------------------------------
Name : softhsm
Product : Fedora EPEL 6
Version : 1.3.5
Release : 2.el6
URL : http://www.opendnssec.org/
Summary : Software version of a PKCS#11 Hardware Security Module
Description :
OpenDNSSEC is providing a software implementation of a generic
cryptographic device with a PKCS#11 interface, the SoftHSM. SoftHSM is
designed to meet the requirements of OpenDNSSEC, but can also work together
with other cryptographic products because of the PKCS#11 interface.
--------------------------------------------------------------------------------
Update Information:
Minor fixes in post and minor cleanup, bump for forgotten build
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update softhsm' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
9 years
Fedora EPEL 6 Update: vertica-python-0.3.6-1.el6
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2015-5851
2015-04-17 16:15:00
--------------------------------------------------------------------------------
Name : vertica-python
Product : Fedora EPEL 6
Version : 0.3.6
Release : 1.el6
URL : https://github.com/uber/vertica-python
Summary : A native Python adapter for the Vertica database
Description :
vertica-python is a native Python adapter for the Vertica
(http://www.vertica.com) database.
--------------------------------------------------------------------------------
Update Information:
update to version 0.3.6
update to version 0.3.5
update to version 0.3.5
update to version 0.3.5
update to version 0.3.5
update to version 0.3.5
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1211428 - vertica-python-0.3.6 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1211428
[ 2 ] Bug #1209692 - vertica-python-v0.3.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1209692
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update vertica-python' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
9 years
Fedora EPEL 7 Update: python-re2-1.0.4-1.el7
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2015-5825
2015-04-17 16:13:38
--------------------------------------------------------------------------------
Name : python-re2
Product : Fedora EPEL 7
Version : 1.0.4
Release : 1.el7
URL : https://github.com/facebook/pyre2
Summary : Python wrapper for Google's RE2 library
Description :
python-re2 is a Python extension that wraps Google's RE2 regular expression
library.
This is Facebook's pyre2 Python extension that wraps Google's RE2 regular
expression library. It implements many of the features of Python's built-in re
module with compatible interfaces.
--------------------------------------------------------------------------------
Update Information:
change from the axiak/pyre2 fork back to the upstream facebook/pyre2
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update python-re2' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
9 years
Fedora EPEL 7 Update: py-bcrypt-0.4-4.el7
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2015-5846
2015-04-17 16:14:49
--------------------------------------------------------------------------------
Name : py-bcrypt
Product : Fedora EPEL 7
Version : 0.4
Release : 4.el7
URL : http://code.google.com/p/py-bcrypt/
Summary : Python bindings for OpenBSD's Blowfish password hashing code
Description :
python-bcrypt is a Python wrapper of OpenBSD's Blowfish password hashing
code, as described in "A Future-Adaptable Password Scheme" by Niels
Provos and David Mazières.
This system hashes passwords using a version of Bruce Schneier's Blowfish
block cipher with modifications designed to raise the cost of off-line
password cracking and frustrate fast hardware implementation. The
computation cost of the algorithm is parametised, so it can be increased
as computers get faster. The intent is to make a compromise of a password
database less likely to result in an attacker gaining knowledge of the
plain-text passwords (e.g. using John the Ripper).
--------------------------------------------------------------------------------
Update Information:
First EPEL 7 build.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1212167 - py-bcrypt: Build for EPEL 7
https://bugzilla.redhat.com/show_bug.cgi?id=1212167
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update py-bcrypt' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
9 years