[SECURITY] Fedora 7 Update: liferea-1.2.23-4.fc7

updates at fedoraproject.org updates at fedoraproject.org
Thu Nov 1 21:21:00 UTC 2007


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2007-2725
2007-11-01 21:20:56.439548
--------------------------------------------------------------------------------

Name        : liferea
Product     : Fedora 7
Version     : 1.2.23
Release     : 4.fc7
URL         : http://liferea.sourceforge.net/
Summary     : An RSS/RDF feed reader
Description :
Liferea (Linux Feed Reader) is an RSS/RDF feed reader.
It's intended to be a clone of the Windows-only FeedReader.
It can be used to maintain a list of subscribed feeds,
browse through their items, and show their contents.

--------------------------------------------------------------------------------
Update Information:

Added patch to fix weak permission in feedlist.opml backup file.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 31 2007 Brian Pepple <bpepple at fedoraproject.org> - 1.2.23-4
- Add patch to fix opml security bug: CVE-2007-5751. (#360641)
* Wed Oct 24 2007 Brian Pepple <bpepple at fedoraproject.org> - 1.2.23-3
- Acutually use the correct version of gecko-libs.
* Wed Oct 24 2007 Brian Pepple <bpepple at fedoraproject.org> - 1.2.23-2
- Rebuild against new gecko-libs.
* Sat Sep  8 2007 Brian Pepple <bpepple at fedoraproject.org> - 1.2.23-1
- Update to 1.2.23.
* Sun Aug  5 2007 Brian Pepple <bpepple at fedoraproject.org> - 1.2.19-4
- Update license tag.
* Wed Jul 18 2007 Brian Pepple <bpepple at fedoraproject.org> - 1.2.19-3
- Rebuild for new gecko-libs 1.8.1.5.
* Tue Jul  3 2007 Brian Pepple <bpepple at fedoraproject.org> - 1.2.19-2
- Bump.
* Tue Jul  3 2007 Brian Pepple <bpepple at fedoraproject.org> - 1.2.19-1
- Update to 1.2.19.
- Release fix http auth bug. (#231073)
* Tue Jun 26 2007 Brian Pepple <bpepple at fedoraproject.org> - 1.2.17-1
- Update to 1.2.17.
* Tue Jun  5 2007 Brian Pepple <bpepple at fedoraproject.org> - 1.2.16b-1
- Update to 1.2.16b.
* Sun Jun  3 2007 Brian Pepple <bpepple at fedoraproject.org> - 1.2.15b-1
- Update to 1.2.15b.
- Drop cpu timer patch, fixed upstream.
* Thu May 31 2007 Brian Pepple <bpepple at fedoraproject.org> - 1.2.10c-3
- Rebuild for new gecko.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #360641 - CVE-2007-5751 liferea weak permissions for the feedlist.opml backup file
        https://bugzilla.redhat.com/show_bug.cgi?id=360641
  [ 2 ] CVE-2007-5751
        http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5751
--------------------------------------------------------------------------------
Updated packages:

58b649d305844d8307973d297c42def67bed8588 liferea-debuginfo-1.2.23-4.fc7.ppc64.rpm
f03233bb9402d43e61d9ca9e6e40690be3b060c4 liferea-1.2.23-4.fc7.ppc64.rpm
ee9f5868eb25e35253a55263616d89976cb72986 liferea-1.2.23-4.fc7.i386.rpm
33b62de87962c4665be67c3749c5cea5da26d461 liferea-debuginfo-1.2.23-4.fc7.i386.rpm
e2f577907f884e1e12110591d8186421546c23a5 liferea-debuginfo-1.2.23-4.fc7.x86_64.rpm
76f78ed739be337c951295d55f10ed4a1a0c5fce liferea-1.2.23-4.fc7.x86_64.rpm
9837904993244941fd70ae43b52248815ff389a8 liferea-debuginfo-1.2.23-4.fc7.ppc.rpm
ae2bf1c3d2b8fabf6dc7b328f4d3bf1815d8d57c liferea-1.2.23-4.fc7.ppc.rpm
e33fa2b4153d81f3b500b2bcd052298e35ea3286 liferea-1.2.23-4.fc7.src.rpm

This update can be installed with the "yum" update program.  Use 
su -c 'yum update liferea' 
at the command line.  For more information, refer to "Managing Software
with yum", available at http://docs.fedoraproject.org/yum/.
--------------------------------------------------------------------------------




More information about the package-announce mailing list