|
|
Subscribe / Log in / New account

Mageia alert MGASA-2017-0047 (calibre)



From:
    	      Mageia Updates <buildsystem-daemon@mageia.org> 


To:
    	      updates-announce@ml.mageia.org 


Subject:
    	      [updates-announce] MGASA-2017-0047: Updated calibre packages fix security vulnerability 


Date:
    	      Sun, 12 Feb 2017 00:47:46 +0100


Message-ID:
    	      <20170211234746.35B0E9F7CC@duvel.mageia.org>


MGASA-2017-0047 - Updated calibre packages fix security vulnerability

Publication date: 11 Feb 2017
URL: http://advisories.mageia.org/MGASA-2017-0047.html
Type: security
Affected Mageia releases: 5
CVE: CVE-2016-10187

Description:
Newer devices like Kobo Aura HD requires newer versions of calibre for
their new firmwares. Current calibre package does not support them.

Also, our current calibre packages in both core and backports
repositories have a security issue (CVE-2016-10187). Newer versions of
calibre 2.75.0 + fixes this issue.

References:
- https://bugs.mageia.org/show_bug.cgi?id=20225
- http://openwall.com/lists/oss-security/2017/01/31/9
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10187

SRPMS:
- 5/core/calibre-2.78.0-1.mga5
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds