Mangelnde Fehlerbehandlung in glib2
ID: | FEDORA-2020-b8d1662e54 |
Distribution: | Fedora |
Plattformen: | Fedora 31 |
Datum: | Mo, 24. Februar 2020, 07:48 |
Referenzen: | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6750 |
Applikationen: | GLib |
Originalnachricht |
|
-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2020-b8d1662e54 2020-02-24 01:34:08.141099 -------------------------------------------------------------------------------- Name : glib2 Product : Fedora 31 Version : 2.62.5 Release : 1.fc31 URL : http://www.gtk.org Summary : A library of handy utility functions Description : GLib is the low-level core library that forms the basis for projects such as GTK+ and GNOME. It provides data structure handling for C, portability wrappers, and interfaces for such runtime functionality as an event loop, threads, dynamic loading, and an object system. -------------------------------------------------------------------------------- Update Information: glib 2.62.5 release: * Fix potential relative read when calling g_printerr(), which could lead to a denial of service from a setuid-root process being used to block access to the TTY for another user (#1919) * Fix SOCKS proxy resolver sometimes not being used when resolving addresses via Happy Eyeballs (CVE-2020-6750) (#1989) * Several other Happy Eyeballs fixes for address resolution (#1871, #1872, #1902) * Fix parsing of full Julian day range from `$TZ` environment variable (#1999) * Several race condition/crash fixes (!1353, !1357) -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 18 2020 Kalev Lember |