[SECURITY] Fedora 20 Update: augeas-1.2.0-1.fc20

updates at fedoraproject.org updates at fedoraproject.org
Sat Mar 15 15:11:16 UTC 2014 

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-2452
2014-02-14 06:32:47
--------------------------------------------------------------------------------

Name        : augeas
Product     : Fedora 20
Version     : 1.2.0
Release     : 1.fc20
URL         : http://augeas.net/
Summary     : A library for changing configuration files
Description :
A library for programmatically editing configuration files. Augeas parses
configuration files into a tree structure, which it exposes through its
public API. Changes made through the API are written back to the initially
read files.

The transformation works very hard to preserve comments and formatting
details. It is controlled by ``lens'' definitions that describe the file
format and the transformation into a tree.

--------------------------------------------------------------------------------
Update Information:

Update to Augeas 1.2.0:

* resolves CVE-2013-6412
* changelog: https://github.com/hercules-team/augeas/blob/master/NEWS
--------------------------------------------------------------------------------
ChangeLog:

* Wed Feb 12 2014 Dominic Cleal <dcleal at redhat.com> - 1.2.0-1
- Update to 1.2.0, add check section
- Update source URL to download.augeas.net (RHBZ#996032)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1034261 - CVE-2013-6412 augeas: incorrect permissions set on newly created files
        https://bugzilla.redhat.com/show_bug.cgi?id=1034261
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update augeas' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

More information about the package-announce mailing list