[SECURITY] Fedora 9 Update: rdesktop-1.6.0-1.fc9
updates at fedoraproject.org
updates at fedoraproject.org
Wed May 14 22:08:33 UTC 2008
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2008-3886
2008-05-14 20:57:36
--------------------------------------------------------------------------------
Name : rdesktop
Product : Fedora 9
Version : 1.6.0
Release : 1.fc9
URL : http://www.rdesktop.org/
Summary : X client for remote desktop into Windows Terminal Server
Description :
rdesktop is an open source client for Windows NT Terminal Server and
Windows 2000 & 2003 Terminal Services, capable of natively speaking
Remote Desktop Protocol (RDP) in order to present the user's NT
desktop. Unlike Citrix ICA, no server extensions are required.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 13 2008 Soren Sandmann <sandmann at redhat.com> - 1.6.0-1
- Update to 1.6.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #445825 - CVE-2008-1801 rdesktop: iso_recv_msg() Integer Underflow Vulnerability
https://bugzilla.redhat.com/show_bug.cgi?id=445825
[ 2 ] Bug #445826 - CVE-2008-1802 rdesktop: process_redirect_pdu() BSS Overflow Vulnerability
https://bugzilla.redhat.com/show_bug.cgi?id=445826
[ 3 ] Bug #445829 - CVE-2008-1803 rdesktop: channel_process() Integer Signedness Vulnerability
https://bugzilla.redhat.com/show_bug.cgi?id=445829
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update rdesktop' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the Fedora-package-announce
mailing list