drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Verwendung schwacher Verschlüsselung in kde-runtime
Name: |
Verwendung schwacher Verschlüsselung in kde-runtime |
|
ID: |
FEDORA-2015-0564 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 20 |
|
Datum: |
Mo, 26. Januar 2015, 08:08 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7252 |
|
Applikationen: |
KDE Software Compilation |
|
Originalnachricht |
Name : kde-runtime Product : Fedora 20 Version : 4.14.3 Release : 3.fc20 URL : http://www.kde.org/ Summary : KDE Runtime Description : Core runtime for KDE 4.
------------------------------------------------------------------------------- - Update Information:
Pull in upstream fixes for: CVE-2013-7252 kwallet: crypto misuse, and kio_sftp corruption ------------------------------------------------------------------------------- - ChangeLog:
* Sun Jan 11 2015 Rex Dieter <rdieter@fedoraproject.org> - 4.14.3-3 - CVE-2013-7252 kwallet: crypto misuse (#1048168,#1048169) - kio_sftp.so corrupts files when reading (#1177947) * Mon Nov 17 2014 Than Ngo <than@redhat.com> - 4.14.3-2 - fix bz#1164609, CVE-2014-8600, Insufficient Input Validation By IO Slaves * Sat Nov 8 2014 Rex Dieter <rdieter@fedoraproject.org> - 4.14.3-1 - 4.14.3 * Sat Oct 11 2014 Rex Dieter <rdieter@fedoraproject.org> - 4.14.2-1 - 4.14.2 * Tue Oct 7 2014 Rex Dieter <rdieter@fedoraproject.org> 4.14.1-2 - drop mouseeventlistener.patch, upstream fixed * Mon Sep 15 2014 Rex Dieter <rdieter@fedoraproject.org> - 4.14.1-1 - 4.14.1 * Sat Aug 16 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 4.14.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Thu Aug 14 2014 Rex Dieter <rdieter@fedoraproject.org> - 4.14.0-1 - 4.14.0 * Tue Aug 5 2014 Daniel Vrátil <dvratil@redhat.com> - 4.13.97-2 - Split khelpcenter and -docs into subpackages to improve coinstallability with Plasma 5 * Tue Aug 5 2014 Rex Dieter <rdieter@fedoraproject.org> - 4.13.97-1 - 4.13.97 * Thu Jul 17 2014 Rex Dieter <rdieter@fedoraproject.org> 4.13.3-2 - rebuild (for pulseaudio, bug #1117683) * Mon Jul 14 2014 Rex Dieter <rdieter@fedoraproject.org> - 4.13.3-1 - 4.13.3 * Tue Jul 8 2014 Rex Dieter <rdieter@fedoraproject.org> 4.13.2-4 - scriptlet polish * Thu Jul 3 2014 Rex Dieter <rdieter@fedoraproject.org> 4.13.2-3 - optimize mimeinfo scriptlet * Thu Jun 19 2014 Rex Dieter <rdieter@fedoraproject.org> 4.13.2-2 - BR: s/qtwebkit-devel/kdelibs4-webkit-devel/ * Mon Jun 9 2014 Rex Dieter <rdieter@fedoraproject.org> - 4.13.2-1 - 4.13.2 * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 4.13.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Fri May 16 2014 Rex Dieter <rdieter@fedoraproject.org> 4.13.1-2 - respin * Sat May 10 2014 Rex Dieter <rdieter@fedoraproject.org> 4.13.1-1 - 4.13.1 * Thu May 1 2014 Rex Dieter <rdieter@fedoraproject.org> - 4.13.0-3 - upstream phonon kcm fix (pulseaudio card profiles) - drop unused passwordless-kwallet patch (now that we have pam-kwallet to play with) * Mon Apr 14 2014 Rex Dieter <rdieter@fedoraproject.org> - 4.13.0-2 - add option to enable optional compat nepomuk stuff (default off) - drop: Requires: nepomuk-core * Sat Apr 12 2014 Rex Dieter <rdieter@fedoraproject.org> - 4.13.0-1 - 4.13.0 * Thu Apr 3 2014 Rex Dieter <rdieter@fedoraproject.org> - 4.12.97-1 - 4.12.97 * Sat Mar 22 2014 Rex Dieter <rdieter@fedoraproject.org> - 4.12.95-1 - 4.12.95 * Tue Mar 18 2014 Rex Dieter <rdieter@fedoraproject.org> 4.12.90-1 - 4.12.90 * Sat Mar 1 2014 Rex Dieter <rdieter@fedoraproject.org> - 4.12.3-1 - 4.12.3 * Fri Jan 31 2014 Rex Dieter <rdieter@fedoraproject.org> - 4.12.2-1 - 4.12.2 * Fri Jan 10 2014 Rex Dieter <rdieter@fedoraproject.org> - 4.12.1-1 - 4.12.1 * Fri Jan 10 2014 Kevin Kofler <Kevin@tigcc.ticalc.org> - 4.12.0-3 - backport support for libssh 0.6 and ECDSA keys (kde#327024) from master/4.13 * Wed Jan 1 2014 Rex Dieter <rdieter@fedoraproject.org> 4.12.0-2 - rebuild (libwebp) * Thu Dec 19 2013 Rex Dieter <rdieter@fedoraproject.org> - 4.12.0-1 - 4.12.0 * Fri Dec 13 2013 Rex Dieter <rdieter@fedoraproject.org> 4.11.97-3 - %build: -DKDE4_ENABLE_FPIE:BOOL=ON - kdesud -Wl,-z,relro,-z,now linker flags * Tue Dec 3 2013 Rex Dieter <rdieter@fedoraproject.org> 4.11.97-2 - rebuild (exiv2) * Sun Dec 1 2013 Rex Dieter <rdieter@fedoraproject.org> - 4.11.97-1 - 4.11.97 * Wed Nov 27 2013 Rex Dieter <rdieter@fedoraproject.org> 4.11.95-3 - rebuild (openexr) * Sat Nov 23 2013 Rex Dieter <rdieter@fedoraproject.org> 4.11.95-2 - rebase passwordless kwallet support * Thu Nov 21 2013 Rex Dieter <rdieter@fedoraproject.org> - 4.11.95-1 - 4.11.95 ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #1048168 - CVE-2013-7252 kwallet: crypto misuse https://bugzilla.redhat.com/show_bug.cgi?id=1048168 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update kde-runtime' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|