Sicherheit: Mangelnde Eingabeprüfung in Arora - Pro-Linux

Name        : arora
Product     : Fedora 15
Version     : 0.11.0
Release     : 3.fc15
URL         : http://code.google.com/p/arora/
Summary     : A cross platform web browser
Description :
Arora is a simple, cross platform web browser based on the QtWebKit engine.
Currently, Arora is still under development, but it already has support for
browsing and other common features such as web history and bookmarks.

-------------------------------------------------------------------------------
-
Update Information:

Fixes CVE-2011-3367, an input validation flaw.
-------------------------------------------------------------------------------
-
ChangeLog:

* Thu Oct 20 2011 Jaroslav Reznik <jreznik@redhat.com> - 0.11.0-3
- CVE-2011-3367 - input validation flaw (rhbz#746875)
-------------------------------------------------------------------------------
-
References:

  [ 1 ] Bug #746875 - CVE-2011-3367 arora: input validation flaw
        https://bugzilla.redhat.com/show_bug.cgi?id=746875
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program.  Use 
su -c 'yum update arora' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce