drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Zwei Probleme in icecast
Name: |
Zwei Probleme in icecast |
|
ID: |
FEDORA-2014-16435 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 21 |
|
Datum: |
Mo, 15. Dezember 2014, 07:39 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9018
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9091 |
|
Applikationen: |
icecast |
|
Originalnachricht |
Name : icecast Product : Fedora 21 Version : 2.4.1 Release : 1.fc21 URL : http://www.icecast.org/ Summary : ShoutCast compatible streaming media server Description : Icecast is a streaming media server which currently supports Ogg Vorbis and MP3 audio streams. It can be used to create an Internet radio station or a privately running jukebox and many things in between. It is very versatile in that new formats can be added relatively easily and supports open standards for communication and interaction.
------------------------------------------------------------------------------- - Update Information:
**fix CVE-2014-9091 (#1168146, #1168147, #1168148, #1168149)**
**fix CVE-2014-9018 (#1165880, #1165882, #1165883, #1165885)**
**enabled fully hardened build (#954320)**
* update new to release v2.4.1 (#1101950)
* added doc-subpkg ------------------------------------------------------------------------------- - ChangeLog:
* Thu Dec 4 2014 Björn Esser <bjoern.esser@gmail.com> - 2.4.1-1 - update new to release v2.4.1 (#1101950) - fix CVE-2014-9091 (#1168146, #1168147, #1168148, #1168149) - fix CVE-2014-9018 (#1165880, #1165882, #1165883, #1165885) - unified spec-file for el5+ and Fedora - some improvements to readability - added doc-subpkg * Thu Dec 4 2014 Björn Esser <bjoern.esser@gmail.com> - 2.3.3-6 - enabled fully hardened build (#954320) ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #1168146 - CVE-2014-9091 icecast: supplementary groups are not overriden https://bugzilla.redhat.com/show_bug.cgi?id=1168146 [ 2 ] Bug #1165880 - CVE-2014-9018 icecast: possible leak of on-connect scripts https://bugzilla.redhat.com/show_bug.cgi?id=1165880 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update icecast' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|