LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for June 20, 2013

Pencil, Pencil, and Pencil

Dividing the Linux desktop

LWN.net Weekly Edition for June 13, 2013

A report from pgCon 2013

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Fedora alert FEDORA-2009-2903 (lcms)



From:
    	      updates@fedoraproject.org 


To:
    	      fedora-package-announce@redhat.com 


Subject:
    	      [SECURITY] Fedora 10 Update: lcms-1.18-1.fc10 


Date:
    	      Mon, 23 Mar 2009 15:53:15 +0000


Message-ID:
    	      <20090323155332.A43CF208554@bastion.fedora.phx.redhat.com>


Archive-link:
    	      Article, Thread
              


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2009-2903
2009-03-23 15:15:48
--------------------------------------------------------------------------------

Name        : lcms
Product     : Fedora 10
Version     : 1.18
Release     : 1.fc10
URL         : http://www.littlecms.com/
Summary     : Color Management System
Description :
LittleCMS intends to be a small-footprint, speed optimized color management
engine in open source form.

--------------------------------------------------------------------------------
ChangeLog:

* Mon Mar 23 2009 kwizart < kwizart at gmail.com > - 1.18-1
- Update to 1.18 (final)
- Remove upstreamed patches
- Disable autoreconf - patch libtool to prevent rpath issue
* Fri Mar 20 2009 kwizart < kwizart at gmail.com > - 1.18-0.1.beta2
- Update to 1.18beta2
 fix bug #487508: CVE-2009-0723 LittleCms integer overflow
 fix bug #487512: CVE-2009-0733 LittleCms lack of upper-bounds check on sizes
 fix bug #487509: CVE-2009-0581 LittleCms memory leak
* Mon Mar  2 2009 kwizart < kwizart at gmail.com > - 1.17-10
- Fix circle dependency #452352
* Wed Feb 25 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.17-9
- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild
* Thu Dec  4 2008 kwizart < kwizart at gmail.com > - 1.17-8
- Fix autoreconf and missing auxiliary files.
* Sat Nov 29 2008 Ignacio Vazquez-Abrams <ivazqueznet+rpm@gmail.com> - 1.17-7
- Rebuild for Python 2.6
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #487508 - CVE-2009-0723 LittleCms integer overflow
        https://bugzilla.redhat.com/show_bug.cgi?id=487508
  [ 2 ] Bug #487512 - CVE-2009-0733 LittleCms lack of upper-bounds check on sizes
        https://bugzilla.redhat.com/show_bug.cgi?id=487512
  [ 3 ] Bug #487509 - CVE-2009-0581 LittleCms memory leak
        https://bugzilla.redhat.com/show_bug.cgi?id=487509
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update lcms' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------

_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-ann...
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds