Login
Newsletter
Werbung

Sicherheit: Mangelnde Prüfung von Zertifikaten in kdelibs
Aktuelle Meldungen Distributionen
Name: Mangelnde Prüfung von Zertifikaten in kdelibs
ID: FEDORA-2011-14751
Distribution: Fedora
Plattformen: Fedora 14
Datum: Fr, 11. November 2011, 08:35
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3365
Applikationen: KDE Software Compilation

Originalnachricht

Name        : kdelibs
Product : Fedora 14
Version : 4.6.5
Release : 7.fc14
URL : http://www.kde.org/
Summary : KDE Libraries
Description :
Libraries for KDE 4.

---------------------------------------------------------------------------=
-----
Update Information:

Includes upstream patch improving KConfig on networked filesystems.
---------------------------------------------------------------------------=
-----
ChangeLog:

* Tue Oct 11 2011 Rex Dieter <rdieter@fedoraproject.org> 4.6.5-7
- KConfig fails to sync on VFAT, CIFS, and EncFS (#730721,kde#203554)
* Tue Oct 11 2011 Rex Dieter <rdieter@fedoraproject.org> 4.6.5-6
- CVE-2011-3365 kdelibs: input validation failure in KSSL (#743056)
* Sat Oct 8 2011 Rex Dieter <rdieter@fedoraproject.org> 4.6.5-5
- Provides: kate-part
* Tue Aug 30 2011 Than Ngo <than@redhat.com> - 4.6.5-4
- clean fedora conditional
* Fri Aug 26 2011 Than Ngo <than@redhat.com> - 4.6.5-3
- drop kdelibs-4.3.1-drkonq.patch which is merged in upstream
* Mon Jul 25 2011 Kevin Kofler <Kevin@tigcc.ticalc.org> 4.6.5-2
- fix KHTML form completion regression (kde#277457, patch by Andrea Iacovit=
ti)
* Fri Jul 1 2011 Rex Dieter <rdieter@fedoraproject.org> 4.6.5-1
- 4.6.5
* Thu Jun 30 2011 Rex Dieter <rdieter@fedoraproject.org> 4.6.4-6
- better (upstream) fix for kstatusnotifieritemdbus leak (#667787, kde#2611=
80)
* Mon Jun 27 2011 Rex Dieter <rdieter@fedoraproject.org> 4.6.4-5
- (Build)Requires: docbook-style-xsl >=3D 1.76
* Mon Jun 27 2011 Rex Dieter <rdieter@fedoraproject.org> 4.6.4-4
- upstream kdoctools/docbook patch (#690124)
* Thu Jun 16 2011 Rex Dieter <rdieter@fedoraproject.org> 4.6.4-3
- fix KConfigXT KComboBox for Qt 4.8 TP1 (upstream patch)
* Tue Jun 14 2011 Rex Dieter <rdieter@fedoraproject.org> 4.6.4-2
- KStatusNotifierItem leaks D-Bus connections (#667787, kde#261180)
* Mon Jun 6 2011 Than Ngo <than@redhat.com> - 4.6.4-1
- 4.6.4
* Tue May 24 2011 Kevin Kofler <Kevin@tigcc.ticalc.org> 4.6.3-5
- fix kio regression causing requests submitted twice (#707146, kde#272466)
* Mon May 16 2011 Rex Dieter <rdieter@fedoraproject.org> 4.6.3-4.1
- Requires: oxygen-icon-theme >=3D 4.6.2
* Tue May 10 2011 Kevin Kofler <Kevin@tigcc.ticalc.org> 4.6.3-4
- Apply the xdg-menu patch everywhere again (#703531)
- Requires: redhat-menus (proper fix for #701693)
* Sun May 8 2011 Rex Dieter <rdieter@fedoraproject.org> 4.6.3-3
- Plasma crash in KiconLoader (kde258706)
* Tue May 3 2011 Kevin Kofler <Kevin@tigcc.ticalc.org> 4.6.3-2
- Drop xdg-menu patch on F15+ (#701693)
* Thu Apr 28 2011 Rex Dieter <rdieter@fedoraproject.org> 4.6.3-1
- 4.6.3
* Mon Apr 25 2011 Rex Dieter <rdieter@fedoraproject.org> 4.6.2-3
- Adjust uri/ mimetypes to use newer x-scheme-handler/ (#587573)
* Tue Apr 19 2011 Rex Dieter <rdieter@fedoraproject.org> 4.6.2-2
- Solid::Networking::status() returning Solid::Networking::Status::Unknown =
(kde#270538)
* Wed Apr 6 2011 Jaroslav Reznik <jreznik@redhat.com> 4.6.2-1
- 4.6.2
* Wed Mar 23 2011 Rex Dieter <rdieter@fedoraproject.org> 4.6.1-5
- Constant spinning of cd/dvd drive ... (#690123, kde#264487)
* Fri Mar 11 2011 Kevin Kofler <Kevin@tigcc.ticalc.org> - 4.6.1-4
- use upstream patch for #682300 (kde#267770), my previous one didn't work
* Fri Mar 11 2011 Kevin Kofler <Kevin@tigcc.ticalc.org> - 4.6.1-3
- set the plugin path in KApplication, don't rely on QT_PLUGIN_PATH being
s=
et,
fixes kpackagekitsmarticon not getting themed (#682300, kde#267770)
* Tue Mar 8 2011 Rex Dieter <rdieter@fedoraproject.org> 4.6.1-2
- Dolphin shows no files... (kde#267709)
* Sat Feb 26 2011 Rex Dieter <rdieter@fedoraproject.org> 4.6.1-1
- 4.6.1
* Mon Feb 21 2011 Jaroslav Reznik <jreznik@redhat.com> - 4.6.0-4
- Fix plasma logout crash (kde#264076)
* Mon Feb 7 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.o=
rg> - 6:4.6.0-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Tue Jan 25 2011 Kevin Kofler <Kevin@tigcc.ticalc.org> - 4.6.0-2
- Conflicts with old versions of kdevplatform, kdevelop, kile, rkward to fo=
rce
their upgrade to compatible versions
* Fri Jan 21 2011 Jaroslav Reznik <jreznik@redhat.com> - 4.6.0-1
- 4.6.0
* Tue Jan 18 2011 Rex Dieter <rdieter@fedoraproject.org> - 4.5.95-2
- Unowned /usr/lib*/kde4/plugins/{gui_platform,styles} dirs (#645059)
* Wed Jan 5 2011 Jaroslav Reznik <jreznik@redhat.com> - 4.5.95-1
- 4.5.95 (4.6rc2)
* Mon Jan 3 2011 Lukas Tinkl <ltinkl@redhat.com> - 4.5.90-3
- update the halectomy patch to also omit the fstab backend
(may interfere with the udisks backend, causing deadlocks, cf kdebug#2613=
59)
* Thu Dec 23 2010 Rex Dieter <rdieter@fedoraproject.org> 4.5.90-2
- build hal-free (ltinkl)
* Wed Dec 22 2010 Rex Dieter <rdieter@fedoraproject.org> 4.5.90-1
- 4.5.90 (4.6rc1)
* Fri Dec 17 2010 Jaroslav Reznik <jreznik@redhat.com> - 4.5.85-5
- rebuild for polkit-qt-1-0.99.0 (soname 1.99.0)
* Fri Dec 10 2010 Rex Dieter <rdieter@fedoraproject.org> - 4.5.85-4
- -common: Conflicts: kdebase-runtime < 4.5.80
- drop some old pre-f13 era Conflicts
* Fri Dec 10 2010 Kevin Kofler <Kevin@tigcc.ticalc.org> - 4.5.85-3
- fix FindQt4.cmake when there's also qt3-devel installed (#661996)
* Wed Dec 8 2010 Thomas Janssen <thomasj@fedoraproject.org> 4.5.85-2
- respun upstream tarball
* Fri Dec 3 2010 Thomas Janssen <thomasj@fedoraproject.org> 4.5.85-1
- 4.5.85 (4.6beta2)
* Fri Nov 26 2010 Rex Dieter <rdieter@fedoraproject.org> 4.5.80-7
- move udisks/upower dep to main pkg (from -devel)
* Wed Nov 24 2010 Lukas Tinkl <ltinkl@redhat.com> - 4.5.80-6
- explicitely require udisks/upower now that we depend on them
* Tue Nov 23 2010 Kevin Kofler <Kevin@tigcc.ticalc.org> - 4.5.80-5
- respun tarball (again), includes fix-build patch
* Tue Nov 23 2010 Kevin Kofler <Kevin@tigcc.ticalc.org> - 4.5.80-4
- respun tarball
- fix build failure triggered by "build fix" (patch by Jonathan
Riddell)
* Mon Nov 22 2010 Lukas Tinkl <ltinkl@redhat.com> - 4.5.80-3
- don't build Solid HAL backend, rely on udisks/upower/udev only =

(aka project HALsectomy)
* Sat Nov 20 2010 Rex Dieter <rdieter@fedoraproject.org> - 4.5.80-2
- squash more rpath's
* Sat Nov 20 2010 Rex Dieter <rdieter@fedoraproject.org> - 4.5.80-1
- 4.5.80 (4.6beta1)
* Mon Nov 15 2010 Rex Dieter <rdieter@fedoraproject.org> - 4.5.3-3
- Closing a konsolepart shell crashes (kde#256652)
* Fri Nov 5 2010 Thomas janssen <thomasj@fedoraproject.org> 4.5.3-2
- rebuild for new libxml2
* Fri Oct 29 2010 Than Ngo <than@redhat.com> - 4.5.3-1
- 4.5.3
* Fri Oct 15 2010 Rex Dieter <rdieter@fedoraproject.org> - 4.5.2-7
- backport configChanged() for wallpaper
* Fri Oct 15 2010 Rex Dieter <rdieter@fedoraproject.org> - 4.5.2-6
- kio/krun patch so kde services can open urls directly too
---------------------------------------------------------------------------=
-----
References:

[ 1 ] Bug #730721 - Include important fix for VFAT/CIFS locking
https://bugzilla.redhat.com/show_bug.cgi?id=3D730721
---------------------------------------------------------------------------=
-----

This update can be installed with the "yum" update program. Use =

su -c 'yum update kdelibs' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on t=
he
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
---------------------------------------------------------------------------=
-----
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Pro-Linux
Gewinnspiel
Neue Nachrichten
Werbung