drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Ausführen beliebiger Kommandos in kdepim
Name: |
Ausführen beliebiger Kommandos in kdepim |
|
ID: |
FEDORA-2012-10411 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 16 |
|
Datum: |
Sa, 28. Juli 2012, 11:38 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3413 |
|
Applikationen: |
KDE Software Compilation |
|
Originalnachricht |
Name : kdepim Product : Fedora 16 Version : 4.8.4 Release : 4.fc16 URL : http://www.kde.org/ Summary : KDE PIM (Personal Information Manager) applications Description : KDE PIM (Personal Information Manager) applications, including: * akregator: feed aggregator * blogilo: blogging application, focused on simplicity and usability * kmail: email client * knode: newsreader * knotes: sticky notes for the desktop * kontact: integrated PIM management * korganizer: journal, appointments, events, todos
------------------------------------------------------------------------------- - Update Information:
kmail security patch to disable java, javascript, browser plugins in html mail by default. ------------------------------------------------------------------------------- - ChangeLog:
* Mon Jul 9 2012 Rex Dieter <rdieter@fedoraproject.org> - 7:4.8.4-4 - webkit security patch - QNetworkAccessHttpBackend crash fix * Fri Jul 6 2012 Rex Dieter <rdieter@fedoraproject.org> 7:4.8.4-3 - upstream filtering patch * Thu Jun 7 2012 Lukáš Tinkl <ltinkl@redhat.com> - 6:4.8.4-2 - respin * Mon Jun 4 2012 Than Ngo <than@redhat.com> - 7:4.8.4-1 - 4.8.4 * Mon Apr 30 2012 Rex Dieter <rdieter@fedoraproject.org> 7:4.8.3-2 - s/kdebase-runtime/kde-runtime/ * Mon Apr 30 2012 Jaroslav Reznik <jreznik@redhat.com> - 7:4.8.3-1 - 4.8.3 * Fri Mar 30 2012 Rex Dieter <rdieter@fedoraproject.org> - 7:4.8.2-1 - 4.8.2 * Thu Mar 29 2012 Rex Dieter <rdieter@fedoraproject.org> 4.8.1-4 - Kalarm not allowing editing or deleting of alarms (#808066) * Mon Mar 12 2012 Jaroslav Reznik <jreznik@redhat.com> - 4.8.1-3 - fix version - remove g++47 patch as it's already applied upstream * Tue Mar 6 2012 Than Ngo <than@redhat.com> - 4.8.1-2 - respin * Mon Mar 5 2012 Jaroslav Reznik <jreznik@redhat.com> - 7:4.8.1-1 - 4.8.1 - add missing ontologies * Tue Feb 28 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 7:4.8.0-2 - Rebuilt for c++ ABI breakage * Sun Jan 22 2012 Rex Dieter <rdieter@fedoraproject.org> - 7:4.8.0-1 - 4.8.0 * Wed Jan 4 2012 Radek Novacek <rnovacek@redhat.com> - 7:4.7.97-1 - 4.7.97 - fix build with g++ 4.7 * Wed Dec 21 2011 Radek Novacek <rnovacek@redhat.com> - 7:4.7.95-1 - 4.7.95 * Sun Dec 4 2011 Rex Dieter <rdieter@fedoraproject.org> - 7:4.7.90-1 - 4.7.90 * Fri Nov 25 2011 Radek Novacek <rnovacek@redhat.com> 7:4.7.80-1 - 4.7.80 (beta 1) - add BR: kdebase-devel - drop "nepomuk disabled spam" patch, patched file not exists * Sat Oct 29 2011 Rex Dieter <rdieter@fedoraproject.org> 7:4.7.3-1 - 4.7.3 * Mon Oct 24 2011 Rex Dieter <rdieter@fedoraproject.org> 7:4.7.2-7 - pkgconfig-style deps * Sun Oct 16 2011 Kevin Kofler <Kevin@tigcc.ticalc.org> 7:4.7.2-6 - rebuild for patched Qt in Rawhide (#746252) ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #840626 - CVE-2012-3413 kdepim: message viewer defaults to enabling java, javascript, and plugins https://bugzilla.redhat.com/show_bug.cgi?id=840626 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update kdepim' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|