Login
Newsletter
Werbung

Sicherheit: Denial of Service in Konversation
Aktuelle Meldungen Distributionen
Name: Denial of Service in Konversation
ID: FEDORA-2014-13791
Distribution: Fedora
Plattformen: Fedora 20
Datum: Sa, 15. November 2014, 13:43
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8483
Applikationen: Konversation

Originalnachricht

Name        : konversation
Product : Fedora 20
Version : 1.5.1
Release : 1.fc20
URL : http://konversation.kde.org/
Summary : A user friendly IRC client
Description :
A simple and easy to use IRC client with support for
strikeout; multi-channel joins; away / unaway messages;
ignore list functionality; support for foreign
language characters; auto-connect to server; optional timestamps
to chat windows; configurable background colors and much more

-------------------------------------------------------------------------------
-
Update Information:

Konversation 1.5.1 is a maintenance release containing only bug fixes. The
included changes address several minor behavioral defects and a low-risk DoS security defect in the Blowfish ECB support.

See also:
https://konversation.kde.org/
-------------------------------------------------------------------------------
-
ChangeLog:

* Tue Nov 4 2014 Rex Dieter <rdieter@fedoraproject.org> 1.5.1-1
- 1.5.1
* Mon Nov 3 2014 Rex Dieter <rdieter@fedoraproject.org> 1.5-8
- Connection to TLS-only server does not work (kde#340396)
* Wed Oct 29 2014 Rex Dieter <rdieter@fedoraproject.org> 1.5-7
- add update-desktop-database scriptlets
* Mon Oct 27 2014 Rex Dieter <rdieter@fedoraproject.org> 1.5-6
- pull in 1.5 branch fixes, including... out-of-bounds read flaw
(#1157342,1156418)
* Sun Aug 17 2014 Fedora Release Engineering
<rel-eng@lists.fedoraproject.org> - 1.5-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
* Thu Jun 19 2014 Rex Dieter <rdieter@fedoraproject.org> 1.5-4
- .spec cleanup
* Sun Jun 8 2014 Fedora Release Engineering
<rel-eng@lists.fedoraproject.org> - 1.5-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Thu May 1 2014 Rex Dieter <rdieter@fedoraproject.org> 1.5-2
- Requires: kde-runtime
* Tue Jan 14 2014 Rex Dieter <rdieter@fedoraproject.org> 1.5-1
- 1.5(final)
* Wed Jan 8 2014 Rex Dieter <rdieter@fedoraproject.org> 1.5-0.7.rc2
- 1.5-rc2
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #1156418 - CVE-2014-8483 quassel, konversation: out-of-bounds read
on a heap-allocated array
https://bugzilla.redhat.com/show_bug.cgi?id=1156418
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update konversation' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Pro-Linux
Gewinnspiel
Neue Nachrichten
Werbung