User: Password:
|
|
Subscribe / Log in / New account

Fedora alert FEDORA-2011-9898 (openarena)

From:  updates@fedoraproject.org
To:  package-announce@lists.fedoraproject.org
Subject:  [SECURITY] Fedora 14 Update: openarena-0.8.5-4.fc14
Date:  Tue, 09 Aug 2011 01:22:03 +0000
Message-ID:  <20110809012203.08752110A1E@bastion02.phx2.fedoraproject.org>
Archive-link:  Article, Thread

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2011-9898 2011-07-31 03:00:28 -------------------------------------------------------------------------------- Name : openarena Product : Fedora 14 Version : 0.8.5 Release : 4.fc14 URL : http://openarena.ws/ Summary : Open source first person shooter Description : OpenArena is an open-source content package for Quake III Arena licensed under the GPL, effectively creating a free stand-alone game. -------------------------------------------------------------------------------- Update Information: - Update to 1.36 svn snapshot r2102 - This fixes 2 security issues where a malicious server could execute arbitrary code on connecting clients (rhbz#725951): - CVE-2011-1412: Execute arbitrary shell commands on connecting clients - CVE-2011-2764: Arbitrary code execution when native-code DLLs are enabled - Update the autodownload + launch script for UrbanTerror to 4.1.1 -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 28 2011 Hans de Goede <hdegoede@redhat.com> - 0.8.5-3 - Update launcher script to work with newer quake3 package + require this * Tue Feb 8 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.8.5-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild * Fri Nov 12 2010 Hans de Goede <hdegoede@redhat.com> - 0.8.5-2 - Fix compability with network play with official openarena servers (#565763) - Various specfile cleanups -------------------------------------------------------------------------------- References: [ 1 ] Bug #725951 - CVE-2011-1412 CVE-2011-2764 quake3: arbitrary code execution vulnerabilites in ioquake3 https://bugzilla.redhat.com/show_bug.cgi?id=725951 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update openarena' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-...


(Log in to post comments)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds