Login
Newsletter
Werbung

Sicherheit: Mangelnde Eingabeprüfung in Arora
Aktuelle Meldungen Distributionen
Name: Mangelnde Eingabeprüfung in Arora
ID: FEDORA-2011-14719
Distribution: Fedora
Plattformen: Fedora 16
Datum: Di, 13. Dezember 2011, 07:05
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3367
Applikationen: Arora

Originalnachricht

Name        : arora
Product : Fedora 16
Version : 0.11.0
Release : 3.fc16
URL : http://code.google.com/p/arora/
Summary : A cross platform web browser
Description :
Arora is a simple, cross platform web browser based on the QtWebKit engine.
Currently, Arora is still under development, but it already has support for
browsing and other common features such as web history and bookmarks.

-------------------------------------------------------------------------------
-
Update Information:

Fixes CVE-2011-3367, an input validation flaw.
-------------------------------------------------------------------------------
-
ChangeLog:

* Thu Oct 20 2011 Jaroslav Reznik <jreznik@redhat.com> - 0.11.0-3
- CVE-2011-3367 - input validation flaw (rhbz#746875)
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #746875 - CVE-2011-3367 arora: input validation flaw
https://bugzilla.redhat.com/show_bug.cgi?id=746875
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update arora' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Pro-Linux
Traut euch!
Neue Nachrichten
Werbung