Sicherheit: Ausführen beliebiger Kommandos in xmonad
Aktuelle Meldungen Distributionen
Name: Ausführen beliebiger Kommandos in xmonad
ID: FEDORA-2013-13332
Distribution: Fedora
Plattformen: Fedora 19
Datum: Di, 6. August 2013, 12:03
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1436
Applikationen: xmonad


Name        : xmonad
Product : Fedora 19
Version : 0.11
Release : 4.fc19
URL : http://hackage.haskell.org/package/xmonad
Summary : A tiling window manager
Description :
xmonad is a tiling window manager for X. Windows are arranged
automatically to tile the screen without gaps or overlap, maximising
screen use. All features of the window manager are accessible from
the keyboard: a mouse is strictly optional. xmonad is written and
extensible in Haskell. Custom layout algorithms, and other
extensions, may be written by the user in config files. Layouts are
applied dynamically, and different layouts may be used on each
workspace. Xinerama is fully supported, allowing windows to be tiled
on several screens.

This is a meta-package that installs xmonad-basic and ghc-xmonad-contrib-devel,
allowing xmonad to be customized with "~/.xmonad/xmonad.hs".

To use xmonad with GNOME/MATE, please install xmonad-mate.

Update Information:

- xmonad-contrib-0.11.2 fixes a vulnerability in the DynamicLog module
- update X11 to
- update xmobar to 0.18

* Fri Mar 22 2013 Jens Petersen <petersen@redhat.com> - 0.11-4
- rebuild

[ 1 ] Bug #989670 - CVE-2013-1436 XMonad.Hooks.DynamicLog remote command
injection flaw

This update can be installed with the "yum" update program. Use
su -c 'yum update xmonad' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list
Pro-Linux @Facebook
Neue Nachrichten