Sicherheit: Ausführen beliebiger Kommandos in spice-protocol - Pro-Linux

Name        : spice-protocol
Product     : Fedora 18
Version     : 0.12.1
Release     : 1.fc18
URL         : http://www.spice-space.org/
Summary     : Spice protocol header files
Description :
Header files describing the spice protocol
and the para-virtual graphics card QXL.

-------------------------------------------------------------------------------
-
Update Information:

Update qemu / spice packages to their latest upstream releases:

- qemu-1.2.0

- spice-0.11.3

- spice-protocol-0.12.1

- spice-gtk-0.13.29

- usbredir-0.5

-------------------------------------------------------------------------------
-
References:

  [ 1 ] Bug #853408 - qemu segfaults on shutdown when writing to a closed
 serial socket (not in server mode)
        https://bugzilla.redhat.com/show_bug.cgi?id=853408
  [ 2 ] Bug #857228 - CVE-2012-4425 X.org: arbitrary code execution as root
 when libdbus >= 1.5 is used [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=857228
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program.  Use 
su -c 'yum update spice-protocol' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce