[SECURITY] Fedora 10 Update: aria2-1.3.1-2.fc10

updates at fedoraproject.org updates at fedoraproject.org
Fri Oct 9 03:38:55 UTC 2009


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2009-10344
2009-10-09 02:21:11
--------------------------------------------------------------------------------

Name        : aria2
Product     : Fedora 10
Version     : 1.3.1
Release     : 2.fc10
URL         : http://aria2.sourceforge.net/
Summary     : High speed download utility with resuming and segmented downloading
Description :
aria2 is a download utility with resuming and segmented downloading.
Supported protocols are HTTP/HTTPS/FTP/BitTorrent. It also supports Metalink
version 3.0.

Currently it has following features:
- HTTP/HTTPS GET support
- HTTP Proxy support
- HTTP BASIC authentication support
- HTTP Proxy authentication support
- FTP support(active, passive mode)
- FTP through HTTP proxy(GET command or tunneling)
- Segmented download
- Cookie support(currently aria2 ignores "expires")
- It can run as a daemon process.
- BitTorrent protocol support with fast extension.
- Selective download in multi-file torrent
- Metalink version 3.0 support(HTTP/FTP/BitTorrent).
- Limiting download/upload speed

--------------------------------------------------------------------------------
Update Information:

Fixes CVE-2009-3575, A buffer overflow vulnerability described in more detail at
https://bugzilla.redhat.com/show_bug.cgi?id=527827
--------------------------------------------------------------------------------
ChangeLog:

* Thu Oct  8 2009 Rahul Sundaram <sundaram at fedoraproject.org> - 1.3.1-2
- Fix spec. Dumb mistake
* Thu Oct  8 2009 Rahul Sundaram <sundaram at fedoraproject.org> - 1.3.1-1
- Update to the same version as Fedora 11 that fixes rhbz#52782
* Fri Dec  5 2008 Michał Bentkowski <mr.ecik at gmail.com> - 1.0.1-2
- New version, 1.0.1
- Forgot to add changelog in last release...
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #527827 - CVE-2009-3575 aria2: buffer overflow vulnerability
        https://bugzilla.redhat.com/show_bug.cgi?id=527827
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update aria2' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------




More information about the Fedora-package-announce mailing list