drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Pufferüberläufe in pl
Name: |
Pufferüberläufe in pl |
|
ID: |
FEDORA-2013-0225 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 16 |
|
Datum: |
Di, 15. Januar 2013, 07:43 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6089
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6090 |
|
Applikationen: |
SWI Prolog |
|
Originalnachricht |
Name : pl Product : Fedora 16 Version : 5.10.2 Release : 9.fc16 URL : http://www.swi-prolog.org Summary : SWI-Prolog - Edinburgh compatible Prolog compiler Description : ISO/Edinburgh-style Prolog compiler including modules, auto-load, libraries, Garbage-collector, stack-expandor, C/C++-interface, GNU-readline interface, very fast compiler. Including packages clib (Unix process control and sockets), cpp (C++ interface), sgml (reading XML/SGML), sgml/RDF (reading RDF into triples) and XPCE (Graphics UI toolkit, integrated editor (Emacs-clone) and source-level debugger).
------------------------------------------------------------------------------- - Update Information:
Fix two buffer overflows when expanding file name glob (CVE-2012-6090) and when canonizing path (CVE-2012-6089). ------------------------------------------------------------------------------- - ChangeLog:
* Fri Jan 4 2013 Petr Pisar <ppisar@redhat.com> - 5.10.2-9 - Fix CVE-2012-6089 (buffer overflows in path canonisation code) (bug #891666) - Fix CVE-2012-6090 (buffer overflows when expanding file-names with long paths) (bug #891666) * Thu Mar 8 2012 Petr Pisar <ppisar@redhat.com> - 5.10.2-8 - Fix JPL interface (bug #590499) ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #891577 - CVE-2012-6089 CVE-2012-6090 pl: (Stack-based) Buffer overflows in path canonisation code and when expanding file-names with long paths https://bugzilla.redhat.com/show_bug.cgi?id=891577 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update pl' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|