-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2013-9188 2013-05-25 11:22:18 --------------------------------------------------------------------------------
Name : libXv Product : Fedora 18 Version : 1.0.7 Release : 5.20130524git50fc4cb18.fc18 URL : http://www.x.org Summary : X.Org X11 libXv runtime library Description : X.Org X11 libXv runtime library -------------------------------------------------------------------------------- Update Information: Update to latest git to fix the following CVEs: CVE-2013-1989, CVE-2013-2066 -------------------------------------------------------------------------------- ChangeLog: * Fri May 24 2013 Peter Hutterer <[email protected]> 1.0.7-5.20130524git50fc4cb18 - Update to git snapshot to fix the CVEs listed below: - CVE-2013-1989 - CVE-2013-2066 * Thu Mar 7 2013 Peter Hutterer <[email protected]> - 1.0.7-4 - autoreconf for aarch64 * Thu Feb 14 2013 Fedora Release Engineering <[email protected]> - 1.0.7-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #959068 - CVE-2013-1989 libXv: Multiple integer overflows leading to heap-based bufer overflows https://bugzilla.redhat.com/show_bug.cgi?id=959068 [ 2 ] Bug #960369 - CVE-2013-2066 libXv: Array Index error leading to heap-based OOB write https://bugzilla.redhat.com/show_bug.cgi?id=960369 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update libXv' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list [email protected] https://admin.fedoraproject.org/mailman/listinfo/package-announce
