mingw March 2015

mingw@lists.fedoraproject.org

5 participants
69 discussions

[Bug 1162570] New: CVE-2014-8501 binutils: out-of-bounds write when parsing specially crafted PE executable
by Red Hat Bugzilla 18 Nov '15

18 Nov '15

https://bugzilla.redhat.com/show_bug.cgi?id=1162570 Bug ID: 1162570 Summary: CVE-2014-8501 binutils: out-of-bounds write when parsing specially crafted PE executable Product: Security Response Component: vulnerability Keywords: Security Severity: low Priority: low Assignee: security-response-team(a)redhat.com Reporter: vkaigoro(a)redhat.com CC: bgollahe(a)redhat.com, dan(a)danny.cz, dhowells(a)redhat.com, erik-fedora(a)vanpienbroek.nl, fedora-mingw(a)lists.fedoraproject.org, jakub(a)redhat.com, kalevlember(a)gmail.com, kanderso(a)redhat.com, ktietz(a)redhat.com, law(a)redhat.com, lkocman(a)redhat.com, lkundrak(a)v3.sk, mfranc(a)redhat.com, mhlavink(a)redhat.com, nickc(a)redhat.com, ohudlick(a)redhat.com, pfrankli(a)redhat.com, rjones(a)redhat.com, rob(a)robspanton.com, seceng-idm-qe-list(a)redhat.com, swhiteho(a)redhat.com, thibault.north(a)gmail.com, tmlcoch(a)redhat.com, trond.danielsen(a)gmail.com It was reported [1] that running strings, nm or objdump on a constructed PE file [2] leads to out-of bounds write to an unitialized memory area. Upstream path for this issue is at [3]. [1]: https://sourceware.org/bugzilla/show_bug.cgi?id=17512#c0 [2]: https://sourceware.org/bugzilla/attachment.cgi?id=7849 [3]: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=7e1e19887abd24ae… -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=xVCMYjG9bG&a=cc_unsubscribe

1 39

[Bug 1205458] New: Review Request: mingw-qt5-qtwebchannel - Qt5 for Windows - QtWebChannel component
by Red Hat Bugzilla 04 Nov '15

04 Nov '15

https://bugzilla.redhat.com/show_bug.cgi?id=1205458 Bug ID: 1205458 Summary: Review Request: mingw-qt5-qtwebchannel - Qt5 for Windows - QtWebChannel component Product: Fedora Version: 21 Component: Package Review Assignee: nobody(a)fedoraproject.org Reporter: erik-fedora(a)vanpienbroek.nl QA Contact: extras-qa(a)fedoraproject.org CC: fedora-mingw(a)lists.fedoraproject.org, package-review(a)lists.fedoraproject.org Spec URL: http://svn.nntpgrab.nl/svn/fedora_cross/mingw-qt5-qtwebchannel/mingw-qt5-qt… SRPM URL: http://koji.vanpienbroek.nl/kojifiles/packages/mingw-qt5-qtwebchannel/5.4.1… Koji scratch build: https://koji.vanpienbroek.nl/koji/buildinfo?buildID=256 Fedora Account System Username: epienbro Description: This package contains the Qt software toolkit for developing cross-platform applications. This is the Windows version of Qt, for use in conjunction with the Fedora Windows cross-compiler. -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=amKXe8w2cr&a=cc_unsubscribe

1 3

[Bug 858062] New: Review Request: mingw-qt5-qtactiveqt - Qt5 for Windows - QtActiveQt component
by Red Hat Bugzilla 15 Jul '15

15 Jul '15

https://bugzilla.redhat.com/show_bug.cgi?id=858062 Bug ID: 858062 QA Contact: extras-qa(a)fedoraproject.org Severity: unspecified Version: rawhide Priority: unspecified CC: fedora-mingw(a)lists.fedoraproject.org, notting(a)redhat.com, package-review(a)lists.fedoraproject.org Assignee: nobody(a)fedoraproject.org Summary: Review Request: mingw-qt5-qtactiveqt - Qt5 for Windows - QtActiveQt component Regression: --- Story Points: --- Classification: Fedora OS: Unspecified Reporter: erik-fedora(a)vanpienbroek.nl Type: Bug Documentation: --- Hardware: Unspecified Mount Type: --- Status: NEW Component: Package Review Product: Fedora Spec URL: http://svn.openftd.org/svn/fedora_cross/mingw-qt5-qtactiveqt/mingw-qt5-qtac… SRPM URL: http://ftd4linux.nl/contrib/mingw-qt5-qtactiveqt-5.0.0-0.1.beta1.fc17.src.r… Fedora Account System Username: epienbro Description: This package contains the Qt software toolkit for developing cross-platform applications. This is the Windows version of Qt, for use in conjunction with the Fedora Windows cross-compiler. -- You are receiving this mail because: You are on the CC list for the bug.

1 26

[Bug 1057910] New: Review Request: mingw-qt5-qtserialport - Qt5 for Windows - QtSerialPort component
by Red Hat Bugzilla 27 Jun '15

27 Jun '15

https://bugzilla.redhat.com/show_bug.cgi?id=1057910 Bug ID: 1057910 Summary: Review Request: mingw-qt5-qtserialport - Qt5 for Windows - QtSerialPort component Product: Fedora Version: rawhide Component: Package Review Severity: medium Priority: medium Assignee: nobody(a)fedoraproject.org Reporter: erik-fedora(a)vanpienbroek.nl QA Contact: extras-qa(a)fedoraproject.org CC: fedora-mingw(a)lists.fedoraproject.org, package-review(a)lists.fedoraproject.org Spec URL: http://svn.nntpgrab.nl/svn/fedora_cross/mingw-qt5-qtserialport/mingw-qt5-qt… SRPM URL: http://koji.vanpienbroek.nl/kojifiles/packages/mingw-qt5-qtserialport/5.2.0… Koji scratch build: http://koji.vanpienbroek.nl/koji/buildinfo?buildID=187 Fedora Account System Username: epienbro Description: This package contains the Qt software toolkit for developing cross-platform applications. This is the Windows version of Qt, for use in conjunction with the Fedora Windows cross-compiler. -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=cAZZzKe8ME&a=cc_unsubscribe

1 4

[Bug 1205459] New: Review Request: mingw-qt5-qtwebsockets - Qt5 for Windows - QtWebSockets component
by Red Hat Bugzilla 12 Apr '15

12 Apr '15

https://bugzilla.redhat.com/show_bug.cgi?id=1205459 Bug ID: 1205459 Summary: Review Request: mingw-qt5-qtwebsockets - Qt5 for Windows - QtWebSockets component Product: Fedora Version: 21 Component: Package Review Assignee: nobody(a)fedoraproject.org Reporter: erik-fedora(a)vanpienbroek.nl QA Contact: extras-qa(a)fedoraproject.org CC: fedora-mingw(a)lists.fedoraproject.org, package-review(a)lists.fedoraproject.org Spec URL: http://svn.nntpgrab.nl/svn/fedora_cross/mingw-qt5-qtwebsockets/mingw-qt5-qt… SRPM URL: http://koji.vanpienbroek.nl/kojifiles/packages/mingw-qt5-qtwebsockets/5.4.1… Koji scratch build: https://koji.vanpienbroek.nl/koji/buildinfo?buildID=258 Fedora Account System Username: epienbro Description: This package contains the Qt software toolkit for developing cross-platform applications. This is the Windows version of Qt, for use in conjunction with the Fedora Windows cross-compiler. -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=3vCCGRFjoo&a=cc_unsubscribe

1 15

[Bug 858085] New: Review Request: mingw-qt5-qtxmlpatterns - Qt5 for Windows - QtXmlPatterns component
by Red Hat Bugzilla 12 Apr '15

12 Apr '15

https://bugzilla.redhat.com/show_bug.cgi?id=858085 Bug ID: 858085 QA Contact: extras-qa(a)fedoraproject.org Severity: unspecified Version: rawhide Priority: unspecified CC: fedora-mingw(a)lists.fedoraproject.org, notting(a)redhat.com, package-review(a)lists.fedoraproject.org Assignee: nobody(a)fedoraproject.org Summary: Review Request: mingw-qt5-qtxmlpatterns - Qt5 for Windows - QtXmlPatterns component Regression: --- Story Points: --- Classification: Fedora OS: Unspecified Reporter: erik-fedora(a)vanpienbroek.nl Type: Bug Documentation: --- Hardware: Unspecified Mount Type: --- Status: NEW Component: Package Review Product: Fedora Spec URL: http://svn.openftd.org/svn/fedora_cross/mingw-qt5-qtxmlpatterns/mingw-qt5-q… SRPM URL: http://ftd4linux.nl/contrib/mingw-qt5-qtxmlpatterns-5.0.0-0.1.beta1.fc17.sr… Fedora Account System Username: epienbro Description: This package contains the Qt software toolkit for developing cross-platform applications. This is the Windows version of Qt, for use in conjunction with the Fedora Windows cross-compiler. -- You are receiving this mail because: You are on the CC list for the bug.

1 24

[Bug 1107557] New: CVE-2014-0191 mingw-libxml2: libxml2: external parameter entity loaded when entity substitution is disabled [fedora-all]
by Red Hat Bugzilla 06 Apr '15

06 Apr '15

https://bugzilla.redhat.com/show_bug.cgi?id=1107557 Bug ID: 1107557 Summary: CVE-2014-0191 mingw-libxml2: libxml2: external parameter entity loaded when entity substitution is disabled [fedora-all] Product: Fedora Version: 20 Component: mingw-libxml2 Keywords: Security, SecurityTracking Severity: medium Priority: medium Assignee: rjones(a)redhat.com Reporter: scorneli(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: drizt(a)land.ru, erik-fedora(a)vanpienbroek.nl, fedora-mingw(a)lists.fedoraproject.org, ktietz(a)redhat.com, lfarkas(a)lfarkas.org, rjones(a)redhat.com, veillard(a)redhat.com Blocks: 1090976 (CVE-2014-0191) This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in affected versions of Fedora. For comments that are specific to the vulnerability please use bugs filed against the "Security Response" product referenced in the "Blocks" field. For more information see: http://fedoraproject.org/wiki/Security/TrackingBugs When creating a Bodhi update request, use the bodhi submission link noted in the next comment(s). This will include the bug IDs of this tracking bug as well as the relevant top-level CVE bugs. Please also mention the CVE IDs being fixed in the RPM changelog and the Bodhi notes field when available. NOTE: this issue affects multiple supported versions of Fedora. While only one tracking bug has been filed, please correct all affected versions at the same time. If you need to fix the versions independent of each other, you may clone this bug as appropriate. [bug automatically created by: add-tracking-bugs] Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=1090976 [Bug 1090976] CVE-2014-0191 libxml2: external parameter entity loaded when entity substitution is disabled -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=DIHWxpqdT4&a=cc_unsubscribe

1 14

[Bug 1090976] CVE-2014-0191 libxml2: external parameter entity loaded when entity substitution is disabled
by Red Hat Bugzilla 31 Mar '15

31 Mar '15

https://bugzilla.redhat.com/show_bug.cgi?id=1090976 Md Azhar <mdshaikh(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |mdshaikh(a)redhat.com -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=iM25XBW4GF&a=cc_unsubscribe

1 0

[Bug 1090976] CVE-2014-0191 libxml2: external parameter entity loaded when entity substitution is disabled
by Red Hat Bugzilla 31 Mar '15

31 Mar '15

1 0

[Bug 1090976] CVE-2014-0191 libxml2: external parameter entity loaded when entity substitution is disabled
by Red Hat Bugzilla 30 Mar '15

30 Mar '15

https://bugzilla.redhat.com/show_bug.cgi?id=1090976 Tomas Hoger <thoger(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution|--- |ERRATA Last Closed| |2015-03-30 07:56:10 -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=a6j7Yv9FAQ&a=cc_unsubscribe

1 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

mingw March 2015