Fedora alert FEDORA-2013-14786 (nmap)

From:
    	     
 
updates@fedoraproject.org 
To:
    	     
 
package-announce@lists.fedoraproject.org 
Subject:
    	     
 
[SECURITY] Fedora 18 Update: nmap-6.40-1.fc18 
Date:
    	     
 
Tue, 27 Aug 2013 23:27:51 +0000
Message-ID:
    	     
 
<20130827232751.DE41521B49@bastion01.phx2.fedoraproject.org>
Archive-link:
    	     
 
Article, Thread
              
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-14786
2013-08-15 01:18:47
--------------------------------------------------------------------------------

Name        : nmap
Product     : Fedora 18
Version     : 6.40
Release     : 1.fc18
URL         : http://nmap.org/
Summary     : Network exploration tool and security scanner
Description :
Nmap is a utility for network exploration or security auditing.  It supports
ping scanning (determine which hosts are up), many port scanning techniques
(determine what services the hosts are offering), and TCP/IP fingerprinting
(remote host operating system identification). Nmap also offers flexible target
and port specification, decoy scanning, determination of TCP sequence
predictability characteristics, reverse-identd scanning, and more. In addition
to the classic command-line nmap executable, the Nmap suite includes a flexible
data transfer, redirection, and debugging tool (netcat utility ncat), a utility
for comparing scan results (ndiff), and a packet generation and response analysis
tool (nping).

--------------------------------------------------------------------------------
Update Information:

- updated fo 6.40
- fixes CVE-2013-4885 nmap: arbitrary file upload flaw in http-domino-enum-passwords NSE script
--------------------------------------------------------------------------------
ChangeLog:

* Thu Aug  8 2013 Michal Hlavinka <mhlavink@redhat.com> - 2:6.40-1
- do not print debug messages during normal use (#994376)
- nmap updated to 6.40
- allow -i timeout in listen mode
* Thu May 23 2013 Michal Hlavinka <mhlavink@redhat.com> - 2:6.25-4
- zenamp: fix icon symlink (#957381)
* Thu May 23 2013 Michal Hlavinka <mhlavink@redhat.com> - 2:6.25-3
- zenmap: do not traceback when there si no display, just exit nicely (#958240)
* Thu Mar 28 2013 Michal Hlavinka <mhlavink@redhat.com> - 2:6.25-2
- fix aarch64 support (#926241)
* Fri Mar  8 2013 Michal Hlavinka <mhlavink@redhat.com> - 2:6.25-1
- nmap updated to 6.25
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2:6.01-11
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Fri Jan  4 2013 Michal Hlavinka <mhlavink@redhat.com> - 2:6.01-10
- use select as default nsock engine
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #995634 - CVE-2013-4885 nmap: arbitrary file upload flaw in http-domino-enum-passwords
NSE script
        https://bugzilla.redhat.com/show_bug.cgi?id=995634
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update nmap' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-...