Fedora alert FEDORA-2013-8687 (gypsy)
| From: | updates@fedoraproject.org | |
| To: | package-announce@lists.fedoraproject.org | |
| Subject: | [SECURITY] Fedora 18 Update: gypsy-0.9-1.fc18 | |
| Date: | Wed, 29 May 2013 00:50:43 +0000 | |
| Message-ID: | <20130529005042.1CDC9210CD@bastion01.phx2.fedoraproject.org> |
-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2013-8687 2013-05-21 06:58:08 -------------------------------------------------------------------------------- Name : gypsy Product : Fedora 18 Version : 0.9 Release : 1.fc18 URL : http://gypsy.freedesktop.org/ Summary : A GPS multiplexing daemon Description : Gypsy is a GPS multiplexing daemon which allows multiple clients to access GPS data from multiple GPS sources concurrently. -------------------------------------------------------------------------------- Update Information: * New upstream 0.9 release * add patch to fix FTBSF due to deprecated g_type_init * Fix CVE-2011-0523 - read arbitrary files as the root user on behalf of a regular user * Fix CVE-2011-0524 - buffer overflow in nmea device input handling (code no longer in existence) * aarch64 support * Fix segfault -------------------------------------------------------------------------------- ChangeLog: * Sun May 19 2013 Peter Robinson <pbrobinson@fedoraproject.org> 0.9-1 - New upstream 0.9 release * Thu Feb 14 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.8-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Jul 19 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.8-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #674129 - CVE-2011-0523 CVE-2011-0524 gypsy: multiple vulnerabilities https://bugzilla.redhat.com/show_bug.cgi?id=674129 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update gypsy' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-...