Name : graphviz Product : Fedora 20 Version : 2.34.0 Release : 8.fc20 URL : http://www.graphviz.org/ Summary : Graph Visualization Tools Description : A collection of tools for the manipulation and layout of graphs (as in nodes and edges, not as in barcharts).
This is an update fixing CVE-2014-1235 and CVE-2014-1236. This is an update that fixes overflow in yyerror. ------------------------------------------------------------------------------- - ChangeLog:
* Thu Jan 9 2014 Jaroslav Škarvada <jskarvad@redhat.com> - 2.34.0-8 - Prevent possible buffer overflow in yyerror() Resolves: CVE-2014-1235 - Fix possible buffer overflow problem in chkNum of scanner Resolves: CVE-2014-1236 * Tue Jan 7 2014 Jaroslav Škarvada <jskarvad@redhat.com> - 2.34.0-7 - Fixed overflow in yyerror Resolves: CVE-2014-0978 * Sat Dec 28 2013 Peter Robinson <pbrobinson@fedoraproject.org> 2.34.0-6 - Disable R bindings on aarch64 for the moment * Thu Dec 19 2013 Peter Robinson <pbrobinson@fedoraproject.org> 2.34.0-5 - No mono on aarch64 ------------------------------------------------------------------------------- - References:
This update can be installed with the "yum" update program. Use su -c 'yum update graphviz' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.