Login
Newsletter
Werbung

Sicherheit: Fehlerhafte Zugriffsrechte in uzbl
Aktuelle Meldungen Distributionen
Name: Fehlerhafte Zugriffsrechte in uzbl
ID: FEDORA-2012-2364
Distribution: Fedora
Plattformen: Fedora 15
Datum: Di, 6. März 2012, 22:48
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0843
Applikationen: uzbl

Originalnachricht

Name        : uzbl
Product : Fedora 15
Version : 0
Release : 0.26.20110402gite7578e27c.fc15
URL : http://www.uzbl.org
Summary : Lightweight WebKit browser following the UNIX philosophy
Description :
Uzbl is a lightweight web browser based on WebKit/Gtk+. Uzbl follows
the UNIX philosophy - "Write programs that do one thing and do it
well. Write programs to work together. Write programs to handle text
streams, because that is a universal interface."

-------------------------------------------------------------------------------
-
Update Information:

Lock down cookie file permissions to not be world-readable.
-------------------------------------------------------------------------------
-
ChangeLog:

* Thu Feb 23 2012 Ben Boeckel <mathstuf@gmail.com> -
0-0.26.20110402gite7578e27c
- Lock down permissions on cookie files (CVE-2012-0843)
- Clean up vim subpackage
* Mon Apr 4 2011 Daiki Ueno <dueno@redhat.com> -
0-0.25.20110402gite7578e27c
- New upstream snapshot
- Don't install removed uzbl-cookie-manager and related files.
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #789645 - CVE-2012-0843 uzbl: world-readable cookie file
https://bugzilla.redhat.com/show_bug.cgi?id=789645
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update uzbl' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Pro-Linux
Traut euch!
Neue Nachrichten
Werbung