-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2013-12593 2013-07-08 23:55:09 --------------------------------------------------------------------------------
Name : libXvMC Product : Fedora 19 Version : 1.0.8 Release : 1.fc19 URL : http://www.x.org Summary : X.Org X11 libXvMC runtime library Description : X.Org X11 libXvMC runtime library -------------------------------------------------------------------------------- Update Information: Update to 1.0.8, fixes potential strncpy overflow Update to latest git to fix the following CVEs: CVE-2013-1999 CVE-2013-1990 -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 8 2013 Peter Hutterer <[email protected]> 1.0.8-1 - libXvMC 1.0.8 -------------------------------------------------------------------------------- References: [ 1 ] Bug #959070 - CVE-2013-1990 libXvMC: Multiple integer overflows leading to heap-based buffer overflows https://bugzilla.redhat.com/show_bug.cgi?id=959070 [ 2 ] Bug #960347 - CVE-2013-1999 libXvMC: Array Index error leading to heap-based OOB write https://bugzilla.redhat.com/show_bug.cgi?id=960347 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update libXvMC' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list [email protected] https://admin.fedoraproject.org/mailman/listinfo/package-announce
