Login
Newsletter
Werbung

Sicherheit: Ausführen beliebiger Kommandos in scummvm-tools
Aktuelle Meldungen Distributionen
Name: Ausführen beliebiger Kommandos in scummvm-tools
ID: FEDORA-2018-9a85d5af21
Distribution: Fedora
Plattformen: Fedora 28
Datum: Sa, 5. Mai 2018, 23:43
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17528
Applikationen: scummvm-tools

Originalnachricht

-------------------------------------------------------------------------------
-
Fedora Update Notification
FEDORA-2018-9a85d5af21
2018-05-05 20:25:39.988805
-------------------------------------------------------------------------------
-

Name : scummvm-tools
Product : Fedora 28
Version : 2.0.0
Release : 1.fc28
URL : http://www.scummvm.org
Summary : Tools for scummVM / S.C.U.M.M scripting language
Description :
This is a collection of various tools that may be useful to use in
conjunction with ScummVM.
Please note that although a tool may support a feature, certain ScummVM
versions may not. ScummVM 0.6.x does not support FLAC audio, for example.

Many games package together all their game data in a few big archive files.
The following tools can be used to extract these archives, and in some cases
are needed to make certain game versions usable with ScummVM.

The following tools can also be used to analyze the game scripts
(controlling the behavior of certain scenes and actors in a game).
These tools are most useful to developers.

-------------------------------------------------------------------------------
-
Update Information:

Update to 2.0.0 release. * Fixes CVE-2017-17528.
-------------------------------------------------------------------------------
-
ChangeLog:

* Sat Apr 14 2018 Christian Krause <chkr@fedoraproject.org> - 2.0.0-1
- update to latest upstream
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #1528425 - CVE-2017-17528 scummvm: Command injection in
backends/platform/sdl/posix/posix.cpp
https://bugzilla.redhat.com/show_bug.cgi?id=1528425
-------------------------------------------------------------------------------
-

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2018-9a85d5af21' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Pro-Linux
Traut euch!
Neue Nachrichten
Werbung