Sicherheit: Zwei Probleme in gypsy - Pro-Linux

Name        : gypsy
Product     : Fedora 19
Version     : 0.9
Release     : 1.fc19
URL         : http://gypsy.freedesktop.org/
Summary     : A GPS multiplexing daemon
Description :
Gypsy is a GPS multiplexing daemon which allows multiple clients to
access GPS data from multiple GPS sources concurrently.

-------------------------------------------------------------------------------
-
Update Information:

* New upstream 0.9 release

* add patch to fix FTBSF due to deprecated g_type_init

* Fix CVE-2011-0523 - read arbitrary files as the root user on behalf of a
 regular user

* Fix CVE-2011-0524 - buffer overflow in nmea device input handling (code no
 longer in existence)

* aarch64 support

* Fix segfault
-------------------------------------------------------------------------------
-
References:

  [ 1 ] Bug #674129 - CVE-2011-0523 CVE-2011-0524 gypsy: multiple
 vulnerabilities
        https://bugzilla.redhat.com/show_bug.cgi?id=674129
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program.  Use 
su -c 'yum update gypsy' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce