[SECURITY] Fedora 11 Update: bugzilla-3.2.6-2.fc11

updates at fedoraproject.org updates at fedoraproject.org
Tue Feb 9 05:10:39 UTC 2010

Fedora Update Notification
2010-02-05 00:45:52

Name        : bugzilla
Product     : Fedora 11
Version     : 3.2.6
Release     : 2.fc11
URL         : http://www.bugzilla.org/
Summary     : Bug tracking system
Description :
Bugzilla is a popular bug tracking system used by multiple open source projects
It requires a database engine installed - either MySQL, PostgreSQL or Oracle.
Without one of these database engines (local or remote), Bugzilla will not work
- see the Release Notes for details.

Update Information:

This version of Bugzilla fixes security issues that were found in previous
versions of the software where private bugs could be made public and
configuration files were exposed to the world.    CVE Numbers: CVE-2009-3989 and
CVE-2009-3387    See upstream security advisory for additional details:

* Tue Feb  2 2010 Emmanuel Seyman <emmanuel.seyman at club-internet.fr> - 3.2.6-2
- Use Linux requirements, not Windows'
* Mon Feb  1 2010 Emmanuel Seyman <emmanuel.seyman at club-internet.fr> - 3.2.6-1
- Update to 3.2.6 (CVE-2009-3989, CVE-2009-3387)
- Specify Perl module versions in the Requires (fixes #524309)
- Add an alias to make $webdotdir a working path (fixes #458848)
* Fri Sep 11 2009 Emmanuel Seyman <emmanuel.seyman at club-internet.fr> - 3.2.5-1
- Update to 3.2.5 (CVE-2009-3125, CVE-2009-3165 and CVE-2009-3166)
* Wed Jul  8 2009 Itamar Reis Peixoto <itamar at ispbrasil.com.br> - 3.2.4-1
- fix https://bugzilla.mozilla.org/show_bug.cgi?id=495257

This update can be installed with the "yum" update program.  Use 
su -c 'yum update bugzilla' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at

More information about the package-announce mailing list