October 2009 - package-announce - Fedora Mailing-Lists

Fedora 11 Update: fluidsynth-1.0.9-4.fc11

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-10885 2009-10-29 02:35:02 -------------------------------------------------------------------------------- Name : fluidsynth Product : Fedora 11 Version : 1.0.9 Release : 4.fc11 URL : http://www.fluidsynth.org/ Summary : Real-time software synthesizer Description : FluidSynth is a real-time software synthesizer based on the SoundFont 2 specifications. It is a "software synthesizer". FluidSynth can read MIDI events from the MIDI input device and render them to the audio device. It can also play MIDI files (note: FluidSynth was previously called IIWU Synth). -------------------------------------------------------------------------------- Update Information: This updates fixes multilib installation conflict of the devel package. -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 28 2009 Orcan Ogetbil <oget[DOT]fedora[AT]gmail[DOT]com> - 1.0.9-4 - Fix doxygen doc multilib conflict (RHBZ#528240) * Fri Jul 24 2009 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.0.9-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild * Fri Jul 17 2009 Orcan Ogetbil <oget[DOT]fedora[AT]gmail[DOT]com> - 1.0.9-2 - Disable portaudio support. It somehow messes up jack. * Sun Jun 28 2009 Orcan Ogetbil <oget[DOT]fedora[AT]gmail[DOT]com> - 1.0.9-1 - Updated to 1.0.9 - Clean rpath - Fix encoding issues - Remove unnecessary direct library dependencies - Add portaudio support -------------------------------------------------------------------------------- References: [ 1 ] Bug #528240 - fluidsynth-devel multilib conflict https://bugzilla.redhat.com/show_bug.cgi?id=528240 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update fluidsynth' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at http://fedoraproject.org/keys --------------------------------------------------------------------------------

14 years, 5 months

1
0
0 / 0

Fedora 11 Update: afraid-dyndns-1.0-2.fc11

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-10235 2009-10-03 17:54:28 -------------------------------------------------------------------------------- Name : afraid-dyndns Product : Fedora 11 Version : 1.0 Release : 2.fc11 URL : http://perl.arix.com Summary : A dynamic DNS client for the free service afraid.org Description : This utility implements a client for the free afraid.org dynamic DNS service. A cron job is set up to check whether the external IP address has changed, and when it does, connects to afraid.org and updates the DNS entries of all the domains of the given account. -------------------------------------------------------------------------------- References: [ 1 ] Bug #522935 - Review Request: mod_gnutls - GnuTLS module for the Apache HTTP server https://bugzilla.redhat.com/show_bug.cgi?id=522935 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update afraid-dyndns' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at http://fedoraproject.org/keys --------------------------------------------------------------------------------

14 years, 5 months

1
0
0 / 0

Fedora 11 Update: globus-gfork-0.2-3.fc11

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-10881 2009-10-29 02:34:55 -------------------------------------------------------------------------------- Name : globus-gfork Product : Fedora 11 Version : 0.2 Release : 3.fc11 URL : http://www.globus.org/ Summary : Globus Toolkit - GFork Description : The Globus Toolkit is an open source software toolkit used for building Grid systems and applications. It is being developed by the Globus Alliance and many others all over the world. A growing number of projects and companies are using the Globus Toolkit to unlock the potential of grids for their cause. The globus-gfork package contains: GFork Library -------------------------------------------------------------------------------- Update Information: The Globus Toolkit is an open source software toolkit used for building Grid systems and applications. It is being developed by the Globus Alliance and many others all over the world. A growing number of projects and companies are using the Globus Toolkit to unlock the potential of grids for their cause. The globus-gfork-progs package contains: GFork Programs - GFork is user configurable super-server daemon very similar to xinetd. It listens on a TCP port. When clients connect to a port it runs an administrator defined program which services that client connection, just as x/inetd do. -------------------------------------------------------------------------------- References: [ 1 ] Bug #516515 - Review Request: globus-gfork - Globus Toolkit - GFork https://bugzilla.redhat.com/show_bug.cgi?id=516515 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update globus-gfork' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at http://fedoraproject.org/keys --------------------------------------------------------------------------------

14 years, 5 months

1
0
0 / 0

Fedora 11 Update: cvc3-2.1-3.fc11

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-10879 2009-10-29 02:34:53 -------------------------------------------------------------------------------- Name : cvc3 Product : Fedora 11 Version : 2.1 Release : 3.fc11 URL : http://www.cs.nyu.edu/acsys/cvc3/ Summary : Validity checker of many-sorted first-order formulas with theories Description : CVC3 is an automatic theorem prover for Satisfiability Modulo Theories (SMT) problems. It can be used to prove the validity (or, dually, the satisfiability) of first-order formulas in a large number of built-in logical theories and their combination. CVC3 is the latest offspring of a series of popular SMT provers, which originated at Stanford University with the SVC system. In particular, it builds on the code base of CVC Lite, its most recent predecessor. Its high level design follows that of the Sammy prover. CVC3 works with a version of first-order logic with polymorphic types and has a wide variety of features including: * several built-in base theories: rational and integer linear arithmetic, arrays, tuples, records, inductive data types, bit vectors, and equality over uninterpreted function symbols; * support for quantifiers; * an interactive text-based interface; * a rich C and C++ API for embedding in other systems; * proof and model generation abilities; * predicate subtyping; * essentially no limit on its use for research or commercial purposes (see license). For example, if you run 'cvc3 +interactive' and submit: i, j: INT; ASSERT i = j + 1; QUERY i>j; it will determine "Valid." If you then ask: QUERY i<j; COUNTERMODEL; it will determine "Invalid." and show an example demonstrating when the formula is not true (e.g., i = 0 and j = -1). -------------------------------------------------------------------------------- Update Information: This update simply saves space. It removes the enormous class diagrams formerly generated by doxygen, which pushes the -doc subpackage down to a reasonable size. Also, noarch subpackages are now marked as such. The runtime portion has not changed at all. -------------------------------------------------------------------------------- References: [ 1 ] Bug #529404 - Review Request: cvc3 - Validity checker of many-sorted first-order formulas with theories https://bugzilla.redhat.com/show_bug.cgi?id=529404 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update cvc3' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at http://fedoraproject.org/keys --------------------------------------------------------------------------------

14 years, 5 months

1
0
0 / 0

[SECURITY] Fedora 11 Update: eclipse-3.4.2-17.fc11

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-10878 2009-10-29 02:34:53 -------------------------------------------------------------------------------- Name : eclipse Product : Fedora 11 Version : 3.4.2 Release : 17.fc11 URL : http://www.eclipse.org/ Summary : An open, extensible IDE Description : The Eclipse platform is designed for building integrated development environments (IDEs), server-side applications, desktop applications, and everything in between. -------------------------------------------------------------------------------- Update Information: Update to new upstream Firefox version 3.5.4, fixing multiple security issues detailed in the upstream advisories: http://www.mozilla.org/security/known- vulnerabilities/firefox35.html#firefox3.5.4 Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner. -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 27 2009 Jan Horak <jhorak(a)redhat.com> - 1:3.4.2-17 - Rebuild against newer gecko * Mon Sep 28 2009 Alexander Kurtakov <akurtako(a)redhat.com> 1:3.4.2-16 - Add post 3.4.2 jdt.core patches. Fixes #525737. * Wed Sep 9 2009 Jan Horak <jhorak(a)redhat.com> - 1:3.4.2-15 - Rebuild against newer gecko * Mon Aug 3 2009 Christopher Aillon <caillon(a)redhat.com> - 1:3.4.2-14 - Rebuild against newer gecko * Fri Jul 17 2009 Jan Horak <jhorak(a)redhat.com> - 1:3.4.2-13 - Rebuild against newer gecko * Tue Jun 30 2009 Christopher Aillon <caillon(a)redhat.com> - 1:3.4.2-12 - Rebuild against newer gecko * Thu Jun 18 2009 Alexander Kurtakov <akurtako(a)redhat.com> 1:3.4.2-11 - Fix package-build template to add target for -Dconfigs. * Tue Apr 21 2009 Andrew Overholt <overholt(a)redhat.com> 1:3.4.2-10 - Update "package build" patch to not nest symlinks (Elliott Baron). - RHBZ#496963. -------------------------------------------------------------------------------- References: [ 1 ] Bug #530567 - CVE-2009-3380 Firefox crashes with evidence of memory corruption https://bugzilla.redhat.com/show_bug.cgi?id=530567 [ 2 ] Bug #530168 - CVE-2009-3376 Firefox download filename spoofing with RTL override https://bugzilla.redhat.com/show_bug.cgi?id=530168 [ 3 ] Bug #530167 - CVE-2009-3375 Firefox cross-origin data theft through document.getSelection() https://bugzilla.redhat.com/show_bug.cgi?id=530167 [ 4 ] Bug #530162 - CVE-2009-1563 Firefox heap buffer overflow in string to number conversion https://bugzilla.redhat.com/show_bug.cgi?id=530162 [ 5 ] Bug #530157 - CVE-2009-3374 Firefox chrome privilege escalation in XPCVariant::VariantDataToJS() https://bugzilla.redhat.com/show_bug.cgi?id=530157 [ 6 ] Bug #530156 - CVE-2009-3373 Firefox heap buffer overflow in GIF color map parser https://bugzilla.redhat.com/show_bug.cgi?id=530156 [ 7 ] Bug #530155 - CVE-2009-3372 Firefox crash in proxy auto-configuration regexp parsing https://bugzilla.redhat.com/show_bug.cgi?id=530155 [ 8 ] Bug #524815 - CVE-2009-3274 Firefox: Predictable /tmp pathname use https://bugzilla.redhat.com/show_bug.cgi?id=524815 [ 9 ] Bug #530151 - CVE-2009-3370 Firefox form history vulnerable to stealing https://bugzilla.redhat.com/show_bug.cgi?id=530151 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update eclipse' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at http://fedoraproject.org/keys --------------------------------------------------------------------------------

14 years, 5 months

1
0
0 / 0

[SECURITY] Fedora 11 Update: xulrunner-1.9.1.4-1.fc11

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-10878 2009-10-29 02:34:53 -------------------------------------------------------------------------------- Name : xulrunner Product : Fedora 11 Version : 1.9.1.4 Release : 1.fc11 URL : http://developer.mozilla.org/En/XULRunner Summary : XUL Runtime for Gecko Applications Description : XULRunner provides the XUL Runtime environment for Gecko applications. -------------------------------------------------------------------------------- Update Information: Update to new upstream Firefox version 3.5.4, fixing multiple security issues detailed in the upstream advisories: http://www.mozilla.org/security/known- vulnerabilities/firefox35.html#firefox3.5.4 Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner. -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 26 2009 Jan Horak <jhorak(a)redhat.com> - 1.9.1.4-1 - Update to 1.9.1.4 * Mon Sep 7 2009 Jan Horak <jhorak(a)redhat.com> - 1.9.1.3-1 - Update to 1.9.1.3 * Mon Aug 3 2009 Martin Stransky <stransky(a)redhat.com> 1.9.1.2-1 - Update to 1.9.1.2 * Fri Jul 17 2009 Martin Stransky <stransky(a)redhat.com> 1.9.1.1-1 - Update to 1.9.1.1 * Thu Jul 16 2009 Christopher Aillon <caillon(a)redhat.com> - 1.9.1-5 - Fix for milw0rm 9137 * Tue Jul 14 2009 Jan Horak <jhorak(a)redhat.com> - 1.9.1-4 - Fixed multilib issues * Tue Jul 7 2009 Jan Horak <jhorak(a)redhat.com> - 1.9.1-3 - Fixed wrong version of Firefox when loading 'about:' as location * Tue Jun 30 2009 Yanko Kaneti <yaneti(a)declera.com> - 1.9.1-2 - Build using system hunspell * Tue Jun 30 2009 Christopher Aillon <caillon(a)redhat.com> 1.9.1-1 - Update to 1.9.1 final release -------------------------------------------------------------------------------- References: [ 1 ] Bug #530567 - CVE-2009-3380 Firefox crashes with evidence of memory corruption https://bugzilla.redhat.com/show_bug.cgi?id=530567 [ 2 ] Bug #530168 - CVE-2009-3376 Firefox download filename spoofing with RTL override https://bugzilla.redhat.com/show_bug.cgi?id=530168 [ 3 ] Bug #530167 - CVE-2009-3375 Firefox cross-origin data theft through document.getSelection() https://bugzilla.redhat.com/show_bug.cgi?id=530167 [ 4 ] Bug #530162 - CVE-2009-1563 Firefox heap buffer overflow in string to number conversion https://bugzilla.redhat.com/show_bug.cgi?id=530162 [ 5 ] Bug #530157 - CVE-2009-3374 Firefox chrome privilege escalation in XPCVariant::VariantDataToJS() https://bugzilla.redhat.com/show_bug.cgi?id=530157 [ 6 ] Bug #530156 - CVE-2009-3373 Firefox heap buffer overflow in GIF color map parser https://bugzilla.redhat.com/show_bug.cgi?id=530156 [ 7 ] Bug #530155 - CVE-2009-3372 Firefox crash in proxy auto-configuration regexp parsing https://bugzilla.redhat.com/show_bug.cgi?id=530155 [ 8 ] Bug #524815 - CVE-2009-3274 Firefox: Predictable /tmp pathname use https://bugzilla.redhat.com/show_bug.cgi?id=524815 [ 9 ] Bug #530151 - CVE-2009-3370 Firefox form history vulnerable to stealing https://bugzilla.redhat.com/show_bug.cgi?id=530151 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update xulrunner' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at http://fedoraproject.org/keys --------------------------------------------------------------------------------

14 years, 5 months

1
0
0 / 0

[SECURITY] Fedora 11 Update: perl-Gtk2-MozEmbed-0.08-6.fc11.6

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-10878 2009-10-29 02:34:53 -------------------------------------------------------------------------------- Name : perl-Gtk2-MozEmbed Product : Fedora 11 Version : 0.08 Release : 6.fc11.6 URL : http://search.cpan.org/dist/Gtk2-MozEmbed Summary : Interface to the Mozilla embedding widget Description : This module allows you to use the Mozilla embedding widget from Perl. -------------------------------------------------------------------------------- Update Information: Update to new upstream Firefox version 3.5.4, fixing multiple security issues detailed in the upstream advisories: http://www.mozilla.org/security/known- vulnerabilities/firefox35.html#firefox3.5.4 Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner. -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 27 2009 Jan Horak <jhorak(a)redhat.com> - 0.08-6.6 - Rebuild against newer gecko * Wed Sep 9 2009 Jan Horak <jhorak(a)redhat.com> - 0.08-6.5 - Rebuild against newer gecko * Mon Aug 3 2009 Christopher Aillon <caillon(a)redhat.com> - 0.08-6.4 - Rebuild against newer gecko * Fri Jul 17 2009 Jan Horak <jhorak(a)redhat.com> - 0.08-6.3 - Rebuild against newer gecko * Tue Jun 30 2009 Christopher Aillon <caillon(a)redhat.com> - 0.08-6.2 - Rebuild against newer gecko -------------------------------------------------------------------------------- References: [ 1 ] Bug #530567 - CVE-2009-3380 Firefox crashes with evidence of memory corruption https://bugzilla.redhat.com/show_bug.cgi?id=530567 [ 2 ] Bug #530168 - CVE-2009-3376 Firefox download filename spoofing with RTL override https://bugzilla.redhat.com/show_bug.cgi?id=530168 [ 3 ] Bug #530167 - CVE-2009-3375 Firefox cross-origin data theft through document.getSelection() https://bugzilla.redhat.com/show_bug.cgi?id=530167 [ 4 ] Bug #530162 - CVE-2009-1563 Firefox heap buffer overflow in string to number conversion https://bugzilla.redhat.com/show_bug.cgi?id=530162 [ 5 ] Bug #530157 - CVE-2009-3374 Firefox chrome privilege escalation in XPCVariant::VariantDataToJS() https://bugzilla.redhat.com/show_bug.cgi?id=530157 [ 6 ] Bug #530156 - CVE-2009-3373 Firefox heap buffer overflow in GIF color map parser https://bugzilla.redhat.com/show_bug.cgi?id=530156 [ 7 ] Bug #530155 - CVE-2009-3372 Firefox crash in proxy auto-configuration regexp parsing https://bugzilla.redhat.com/show_bug.cgi?id=530155 [ 8 ] Bug #524815 - CVE-2009-3274 Firefox: Predictable /tmp pathname use https://bugzilla.redhat.com/show_bug.cgi?id=524815 [ 9 ] Bug #530151 - CVE-2009-3370 Firefox form history vulnerable to stealing https://bugzilla.redhat.com/show_bug.cgi?id=530151 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update perl-Gtk2-MozEmbed' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at http://fedoraproject.org/keys --------------------------------------------------------------------------------

14 years, 5 months

1
0
0 / 0

[SECURITY] Fedora 11 Update: seahorse-plugins-2.26.2-7.fc11

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-10878 2009-10-29 02:34:53 -------------------------------------------------------------------------------- Name : seahorse-plugins Product : Fedora 11 Version : 2.26.2 Release : 7.fc11 URL : http://projects.gnome.org/seahorse/ Summary : Plugins and utilities for encryption in GNOME Description : The plugins and utilities in this package integrate seahorse into the GNOME desktop environment and allow users to perform operations from applications like nautilus or gedit. -------------------------------------------------------------------------------- Update Information: Update to new upstream Firefox version 3.5.4, fixing multiple security issues detailed in the upstream advisories: http://www.mozilla.org/security/known- vulnerabilities/firefox35.html#firefox3.5.4 Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner. -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 27 2009 Jan Horak <jhorak(a)redhat.com> - 2.26.2-7 - Rebuild against newer gecko * Wed Oct 7 2009 Matthias Clasen <mclasen(a)redhat.com> - 2.26.2-6 - Implement GETINFO to make seahorse-agent work with gnupg >= 2.0.12 * Wed Sep 9 2009 Jan Horak <jhorak(a)redhat.com> - 2.26.2-5 - Rebuild against newer gecko * Mon Aug 3 2009 Christopher Aillon <caillon(a)redhat.com> - 2.26.2-4 - Rebuild against newer gecko * Fri Jul 17 2009 Jan Horak <jhorak(a)redhat.com> - 2.26.2-3 - Rebuild against newer gecko * Tue Jun 30 2009 Christopher Aillon <caillon(a)redhat.com> - 2.26.2-2 - Rebuild against newer gecko * Thu May 21 2009 Tomas Bzatek <tbzatek(a)redhat.com> 2.26.2-1 - Update to 2.26.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #530567 - CVE-2009-3380 Firefox crashes with evidence of memory corruption https://bugzilla.redhat.com/show_bug.cgi?id=530567 [ 2 ] Bug #530168 - CVE-2009-3376 Firefox download filename spoofing with RTL override https://bugzilla.redhat.com/show_bug.cgi?id=530168 [ 3 ] Bug #530167 - CVE-2009-3375 Firefox cross-origin data theft through document.getSelection() https://bugzilla.redhat.com/show_bug.cgi?id=530167 [ 4 ] Bug #530162 - CVE-2009-1563 Firefox heap buffer overflow in string to number conversion https://bugzilla.redhat.com/show_bug.cgi?id=530162 [ 5 ] Bug #530157 - CVE-2009-3374 Firefox chrome privilege escalation in XPCVariant::VariantDataToJS() https://bugzilla.redhat.com/show_bug.cgi?id=530157 [ 6 ] Bug #530156 - CVE-2009-3373 Firefox heap buffer overflow in GIF color map parser https://bugzilla.redhat.com/show_bug.cgi?id=530156 [ 7 ] Bug #530155 - CVE-2009-3372 Firefox crash in proxy auto-configuration regexp parsing https://bugzilla.redhat.com/show_bug.cgi?id=530155 [ 8 ] Bug #524815 - CVE-2009-3274 Firefox: Predictable /tmp pathname use https://bugzilla.redhat.com/show_bug.cgi?id=524815 [ 9 ] Bug #530151 - CVE-2009-3370 Firefox form history vulnerable to stealing https://bugzilla.redhat.com/show_bug.cgi?id=530151 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update seahorse-plugins' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at http://fedoraproject.org/keys --------------------------------------------------------------------------------

14 years, 5 months

1
0
0 / 0

[SECURITY] Fedora 11 Update: yelp-2.26.0-8.fc11

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-10878 2009-10-29 02:34:53 -------------------------------------------------------------------------------- Name : yelp Product : Fedora 11 Version : 2.26.0 Release : 8.fc11 URL : http://live.gnome.org/Yelp Summary : Help browser for the GNOME desktop Description : Yelp is the help browser for the GNOME desktop. It is designed to help you browse all the documentation on your system in one central tool, including traditional man pages, info pages and documentation written in DocBook. -------------------------------------------------------------------------------- Update Information: Update to new upstream Firefox version 3.5.4, fixing multiple security issues detailed in the upstream advisories: http://www.mozilla.org/security/known- vulnerabilities/firefox35.html#firefox3.5.4 Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner. -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 27 2009 Jan Horak <jhorak(a)redhat.com> - 2.26.0-8 - Rebuild against newer gecko * Wed Sep 9 2009 Jan Horak <jhorak(a)redhat.com> - 2.26.0-7 - Rebuild against newer gecko * Mon Aug 3 2009 Christopher Aillon <caillon(a)redhat.com> - 2.26.0-6 - Rebuild against newer gecko * Fri Jul 17 2009 Jan Horak <jhorak(a)redhat.com> - 2.26.0-5 - Rebuild against newer gecko * Tue Jun 30 2009 Christopher Aillon <caillon(a)redhat.com> - 2.26.0-4 - Rebuild against newer gecko -------------------------------------------------------------------------------- References: [ 1 ] Bug #530567 - CVE-2009-3380 Firefox crashes with evidence of memory corruption https://bugzilla.redhat.com/show_bug.cgi?id=530567 [ 2 ] Bug #530168 - CVE-2009-3376 Firefox download filename spoofing with RTL override https://bugzilla.redhat.com/show_bug.cgi?id=530168 [ 3 ] Bug #530167 - CVE-2009-3375 Firefox cross-origin data theft through document.getSelection() https://bugzilla.redhat.com/show_bug.cgi?id=530167 [ 4 ] Bug #530162 - CVE-2009-1563 Firefox heap buffer overflow in string to number conversion https://bugzilla.redhat.com/show_bug.cgi?id=530162 [ 5 ] Bug #530157 - CVE-2009-3374 Firefox chrome privilege escalation in XPCVariant::VariantDataToJS() https://bugzilla.redhat.com/show_bug.cgi?id=530157 [ 6 ] Bug #530156 - CVE-2009-3373 Firefox heap buffer overflow in GIF color map parser https://bugzilla.redhat.com/show_bug.cgi?id=530156 [ 7 ] Bug #530155 - CVE-2009-3372 Firefox crash in proxy auto-configuration regexp parsing https://bugzilla.redhat.com/show_bug.cgi?id=530155 [ 8 ] Bug #524815 - CVE-2009-3274 Firefox: Predictable /tmp pathname use https://bugzilla.redhat.com/show_bug.cgi?id=524815 [ 9 ] Bug #530151 - CVE-2009-3370 Firefox form history vulnerable to stealing https://bugzilla.redhat.com/show_bug.cgi?id=530151 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update yelp' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at http://fedoraproject.org/keys --------------------------------------------------------------------------------

14 years, 5 months

1
0
0 / 0

[SECURITY] Fedora 11 Update: ruby-gnome2-0.19.3-3.fc11

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-10878 2009-10-29 02:34:53 -------------------------------------------------------------------------------- Name : ruby-gnome2 Product : Fedora 11 Version : 0.19.3 Release : 3.fc11 URL : http://ruby-gnome2.sourceforge.jp/ Summary : Ruby binding of libgnome/libgnomeui-2.x Description : Ruby/GNOME2 is a Ruby binding of libgnome/libgnomeui-2.x. -------------------------------------------------------------------------------- Update Information: Update to new upstream Firefox version 3.5.4, fixing multiple security issues detailed in the upstream advisories: http://www.mozilla.org/security/known- vulnerabilities/firefox35.html#firefox3.5.4 Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner. -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 27 2009 Jan Horak <jhorak(a)redhat.com> - 0.19.3-3 - Rebuild against newer gecko * Sun Sep 27 2009 Mamoru Tasaka <mtasaka(a)ioa.s.u-tokyo.ac.jp> - 0.19.3-2 - Fix crash when moving cursor on fantasdic 1.0 beta 7 (ruby-gnome2-Bugs-2865895) * Fri Sep 25 2009 Mamoru Tasaka <mtasaka(a)ioa.s.u-tokyo.ac.jp> - 0.19.3-1 - Update to 0.19.3 - Released source does not support gio yet * Wed Sep 9 2009 Jan Horak <jhorak(a)redhat.com> - 0.19.1-2 - Rebuild against newer gecko * Mon Aug 3 2009 Christopher Aillon <caillon(a)redhat.com> - 0.19.1-1.1 - Rebuild against newer gecko * Mon Aug 3 2009 Mamoru Tasaka <mtasaka(a)ioa.s.u-tokyo.ac.jp> - 0.19.1-1 - Update to 0.19.1, drop all upstreamed patches - Introduce many -devel subpackages containing pkgconfig file * Fri Jul 17 2009 Jan Horak <jhorak(a)redhat.com> - 0.19.0-3.1 - Rebuild against newer gecko * Thu Jul 9 2009 Mamoru Tasaka <mtasaka(a)ioa.s.u-tokyo.ac.jp> - 0.19.0-3 - Make ruby-gtkglext require ruby(opengl) * Wed Jul 1 2009 Mamoru Tasaka <mtasaka(a)ioa.s.u-tokyo.ac.jp> - 0.19.0-2 - Install more needed header files in ruby-gtk2-devel (bug 509035) - Keep timestamps on installed header files * Tue Jun 30 2009 Christopher Aillon <caillon(a)redhat.com> - Rebuild against newer gecko * Thu Jun 18 2009 Mamoru Tasaka <mtasaka(a)ioa.s.u-tokyo.ac.jp> - 0.19.0-1 - Update to 0.19.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #530567 - CVE-2009-3380 Firefox crashes with evidence of memory corruption https://bugzilla.redhat.com/show_bug.cgi?id=530567 [ 2 ] Bug #530168 - CVE-2009-3376 Firefox download filename spoofing with RTL override https://bugzilla.redhat.com/show_bug.cgi?id=530168 [ 3 ] Bug #530167 - CVE-2009-3375 Firefox cross-origin data theft through document.getSelection() https://bugzilla.redhat.com/show_bug.cgi?id=530167 [ 4 ] Bug #530162 - CVE-2009-1563 Firefox heap buffer overflow in string to number conversion https://bugzilla.redhat.com/show_bug.cgi?id=530162 [ 5 ] Bug #530157 - CVE-2009-3374 Firefox chrome privilege escalation in XPCVariant::VariantDataToJS() https://bugzilla.redhat.com/show_bug.cgi?id=530157 [ 6 ] Bug #530156 - CVE-2009-3373 Firefox heap buffer overflow in GIF color map parser https://bugzilla.redhat.com/show_bug.cgi?id=530156 [ 7 ] Bug #530155 - CVE-2009-3372 Firefox crash in proxy auto-configuration regexp parsing https://bugzilla.redhat.com/show_bug.cgi?id=530155 [ 8 ] Bug #524815 - CVE-2009-3274 Firefox: Predictable /tmp pathname use https://bugzilla.redhat.com/show_bug.cgi?id=524815 [ 9 ] Bug #530151 - CVE-2009-3370 Firefox form history vulnerable to stealing https://bugzilla.redhat.com/show_bug.cgi?id=530151 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update ruby-gnome2' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at http://fedoraproject.org/keys --------------------------------------------------------------------------------

14 years, 5 months

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

package-announce October 2009