Fedora 10 updates-testing report
updates at fedoraproject.org
updates at fedoraproject.org
Thu Dec 3 05:13:05 UTC 2009
The following builds have been pushed to Fedora 10 updates-testing
cacti-0.8.7e-3.fc10
libtool-1.5.26-4.fc10.1
Details about builds:
================================================================================
cacti-0.8.7e-3.fc10 (FEDORA-2009-12570)
An rrd based graphing tool
--------------------------------------------------------------------------------
Update Information:
This fix contains several official patches from cacti: Command Line Add
Graphs Syntax SNMP Invalid Responses Template Import/Export Duplication
Cross-Site Scripting Fixes http://www.cacti.net/download_patches.php
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 1 2009 Mike McGrath <mmcgrath at redhat.com> - 0.8.7e-3
- Pulling in some official patches
- #541279
- #541962
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #541279 - CVE-2009-4032 Cacti: Multiple cross-site scripting flaws
https://bugzilla.redhat.com/show_bug.cgi?id=541279
--------------------------------------------------------------------------------
================================================================================
libtool-1.5.26-4.fc10.1 (FEDORA-2009-12540)
The GNU Portable Library Tool
--------------------------------------------------------------------------------
Update Information:
libltdl may load and execute code from a library in the current directory.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 2 2009 Karsten Hopp <karsten at redhat.com> 1.5.26-4.1
- add fix for CVE-2009-3736:
libltdl may load and execute code from a library in the current directory
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #537941 - CVE-2009-3736 libtool: libltdl may load and execute code from a library in the current directory
https://bugzilla.redhat.com/show_bug.cgi?id=537941
--------------------------------------------------------------------------------
More information about the fedora-test-list
mailing list