-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2010-17004 2010-10-31 20:56:44 --------------------------------------------------------------------------------
Name : gnome-xcf-thumbnailer Product : Fedora 13 Version : 1.0 Release : 4.fc13 URL : http://ftp.gnome.org/pub/GNOME/sources/gnome-xcf-thumbnailer/ Summary : Thumbnailer for XCF files Description : Thumbnailer for GIMP's own format, XCF files. -------------------------------------------------------------------------------- Update Information: This update fixes potential stack-based buffer overflows that can allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted image that causes a conversion to a location "above or to the left of the canvas." -------------------------------------------------------------------------------- ChangeLog: * Fri Oct 29 2010 ELMORABITY Mohamed <[email protected]> 1.0-4 - Fix RHBZ #64797 (CVE-2009-2175) - Update GConf scriptlets to latest specifications -------------------------------------------------------------------------------- References: [ 1 ] Bug #647907 - CVE-2009-2175 xcftools: stack-based buffer overflow in flatten.c https://bugzilla.redhat.com/show_bug.cgi?id=647907 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update gnome-xcf-thumbnailer' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list [email protected] https://admin.fedoraproject.org/mailman/listinfo/package-announce
