[SECURITY] Fedora 19 Update: libkdcraw-4.10.5-2.fc19
updates at fedoraproject.org
updates at fedoraproject.org
Wed Jul 24 03:34:43 UTC 2013
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-13038
2013-07-15 23:37:21
--------------------------------------------------------------------------------
Name : libkdcraw
Product : Fedora 19
Version : 4.10.5
Release : 2.fc19
URL : https://projects.kde.org/projects/kde/kdegraphics/libs/libkdcraw
Summary : A C++ interface around LibRaw library
Description :
Libkdcraw is a C++ interface around LibRaw library used to decode RAW
picture files. More information about LibRaw can be found at
http://www.libraw.org.
--------------------------------------------------------------------------------
Update Information:
Fix for CVE-2013-2126, double-free flaw when handling damaged full-color in Foveon and sRAW files
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 15 2013 Than Ngo <than at redhat.com> - 4.10.5-2
- bz#970713, CVE-2013-2126, double-free flaw when handling
damaged full-color in Foveon and sRAW files
* Sun Jun 30 2013 Than Ngo <than at redhat.com> - 4.10.5-1
- 4.10.5
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #970713 - CVE-2013-2126 LibRaw: double-free flaw when handling damaged full-color in Foveon and sRAW files [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=970713
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update libkdcraw' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list