LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Fedora alert FEDORA-2012-1054 (ettercap)



From:
    	      updates@fedoraproject.org 


To:
    	      package-announce@lists.fedoraproject.org 


Subject:
    	      [SECURITY] Fedora 16 Update: ettercap-0.7.4-3.fc16 


Date:
    	      Wed, 08 Feb 2012 22:58:37 +0000


Message-ID:
    	      <20120208225837.BBD0121187@bastion01.phx2.fedoraproject.org>


Archive-link:
    	      Article, Thread
              


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-1054
2012-01-31 21:17:48
--------------------------------------------------------------------------------

Name        : ettercap
Product     : Fedora 16
Version     : 0.7.4
Release     : 3.fc16
URL         : http://ettercap.sourceforge.net
Summary     : Network traffic sniffer/analyser, NCURSES interface version
Description :
Ettercap is a suite for man in the middle attacks on LAN. It features
sniffing of live connections, content filtering on the fly and many other
interesting tricks. It supports active and passive dissection of many
protocols (even ciphered ones) and includes many feature for network and host
analysis.

This package contains the NCURSES version.

--------------------------------------------------------------------------------
Update Information:

New upstream, and patch for insecure global settings file.
Restored RPM_OPT_FLAGS to build.
New upstream, and patch for insecure global settings file.
New upstream, and patch for insecure global settings file.
New upstream, and patch for insecure global settings file.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jan 30 2012 Jon Ciesla <limburgher@gmail.com> - 0.7.4-3
- RPM_OPT_FLAGS fix, BZ 785562.
* Thu Jan 26 2012 Jon Ciesla <limburgher@gmail.com> - 0.7.4-2
- Patch for CVE-2010-3843.
* Thu Jan 26 2012 Jon Ciesla <limburgher@gmail.com> - 0.7.4-1
- New upstream. Now BRs bison, flex.
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.7.3-40
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Tue Dec  6 2011 Adam Jackson <ajax@redhat.com> - 0.7.3-39
- Rebuild for new libpng
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #643454 - CVE-2010-3843 ettercap: insecure global settings file [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=643454
  [ 2 ] Bug #783675 - Segfault in curses interface
        https://bugzilla.redhat.com/show_bug.cgi?id=783675
  [ 3 ] Bug #659903 - Segmentation Fault on ettercap
        https://bugzilla.redhat.com/show_bug.cgi?id=659903
  [ 4 ] Bug #785562 - ettercap 0.7.4-2 not built with $RPM_OPT_FLAGS
        https://bugzilla.redhat.com/show_bug.cgi?id=785562
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update ettercap' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-...
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds