Login
Newsletter
Werbung

Sicherheit: Preisgabe von Informationen in Bacula
Aktuelle Meldungen Distributionen
Name: Preisgabe von Informationen in Bacula
ID: FEDORA-2012-14452
Distribution: Fedora
Plattformen: Fedora 16
Datum: Do, 24. Januar 2013, 23:55
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4430
Applikationen: Bacula

Originalnachricht

Name        : bacula
Product : Fedora 16
Version : 5.0.3
Release : 33.fc16
URL : http://www.bacula.org
Summary : Cross platform network backup for Linux, Unix, Mac and Windows
Description :
Bacula is a set of programs that allow you to manage the backup,
recovery, and verification of computer data across a network of
different computers. It is based on a client/server architecture and is
efficient and relatively easy to use, while offering many advanced
storage management features that make it easy to find and recover lost
or damaged files.

-------------------------------------------------------------------------------
-
Update Information:

Make dump_resource respect console ACL's
-------------------------------------------------------------------------------
-
ChangeLog:

* Tue Sep 18 2012 Lukáš Nykrýn <lnykryn@redhat.com> - 5.0.3-33
- Make dump_resource respect console ACL's (#857957)
- CVE-2012-4430
* Mon Jul 23 2012 Simone Caronni <negativo17@gmail.com> 5.0.3-32
- Updated sysconfig files.
* Thu Jul 19 2012 Simone Caronni <negativo17@gmail.com> 5.0.3-31
- Drop examples (rhbz#475469).
* Mon Jul 16 2012 Simone Caronni <negativo17@gmail.com> - 5.0.3-30
- Fix log path as in f17/rawhide builds (rhbz#837706).
- Add nss-lookup.target as required to service files (rhbz#838828).
* Mon Jul 2 2012 Simone Caronni <negativo17@gmail.com> - 5.0.3-29
- Remove leftover script.
* Wed Feb 1 2012 Simone Caronni <negativo17@gmail.com> - 5.0.3-28
- Add bat html docs so the help button works.
* Wed Feb 1 2012 Lukas Nykryn <lnykryn@redhat.com> - 5.0.3-27
- Remove dependency on fedora-usermgmt.
* Mon Jan 30 2012 Simone Caronni <negativo17@gmail.com> - 5.0.3-26
- Fix ldconfig/alternatives symlinks on removal of packages.
* Mon Jan 30 2012 Lukas Nykryn <lnykryn@redhat.com> - 5.0.3-25
- Remove dependency on WxGTK in RHEL.
* Fri Jan 27 2012 Simone Caronni <negativo17@gmail.com> - 5.0.3-24
- Correct license to AGPLv3.
- Split off libs in separate backends.
- Trim changelog for version <5.0.0.
* Thu Jan 26 2012 Simone Caronni <negativo17@gmail.com> - 5.0.3-23
- Add ldconfig after setting up symlinks for libbacsql variants.
* Wed Jan 25 2012 Simone Caronni <negativo17@gmail.com> - 5.0.3-22
- Fix for rhbz#784471.
- Add libbaccats.so symlink to alternatives, thanks pghmcfc.
* Tue Jan 24 2012 Simone Caronni <negativo17@gmail.com> - 5.0.3-21
- Fix postgresql libs dependency issue.
* Tue Jan 24 2012 Simone Caronni <negativo17@gmail.com> - 5.0.3-20
- Fix rhbz#728693 and rhbz#726147.
- Remove bacula-docs BuildRequires.
- Remove fedora-usermgmt dependency, static id 133 already defined as in:
`cat /usr/share/doc/setup-2.8.36/uidgid | grep bacula`
Upgrades still keep the old uid/gid.
* Wed Jan 11 2012 Simone Caronni <negativo17@gmail.com> - 5.0.3-19
- Add devel subpackage.
- Split off docs subpackage.
* Mon Jan 9 2012 Simone Caronni <negativo17@gmail.com> - 5.0.3-18
- Enable batch insert code.
* Mon Jan 2 2012 Simone Caronni <negativo17@gmail.com> - 5.0.3-17
- Revert to SySV init scripts as packaging policies forbid systemd
migration if not changing Fedora release; thanks Lukáš.
* Fri Dec 23 2011 Simone Caronni <negativo17@gmail.com> - 5.0.3-16
- Add Nagios plugin.
- Add conditionals for RHEL building (initscripts, bat).
- Enable libtool, bpipe-fd.so plugin and remove dsolink patches.
* Fri Dec 23 2011 Simone Caronni <negativo17@gmail.com> - 5.0.3-15
- Spec file cleanup.
- Fix Buildrequires for RHEL.
- Enable POSIX.1e capabilities.
- Enable LZO compression.
- Enable readline support and tab completion in bconsole.
- Remove SQLite 2 support for RHEL 4.
- Add HTML docs.
- Change SQL query file patch.
- Add back sysconf files and remove redundant user/group in systemd
service files.
- Move build of common parts around to reduce build time and to prepare
for nagios-plugins and conditionals for RHEL.
* Thu Dec 22 2011 Lukáš Nykrýn <lnykryn@redhat.com> - 5.0.3-14
- removed duplicity from logrotate file (#755970)
* Thu Nov 3 2011 Lukáš Nykrýn <lnykryn@redhat.com> - 5.0.3-13
- fixed creating of bacula MySQL tables and bump
* Sun Oct 9 2011 Lukáš Nykrýn <lnykryn@redhat.com> - 5.0.3-12
- fixed restart option in service files (#745529)
- fixed creating of bacula MySQL tables (#724894)
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #857955 - CVE-2012-4430 bacula: Improper ACL rules enforcement by
dumping resources
https://bugzilla.redhat.com/show_bug.cgi?id=857955
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update bacula' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Pro-Linux
Gewinnspiel
Neue Nachrichten
Werbung