--------------------------------------------------------------------- Fedora Legacy Test Update Notification FEDORALEGACY-2005-155508 Bugzilla https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=155508 2005-05-05 --------------------------------------------------------------------- Name : cvs Versions : rh73: cvs-1.11.1p1-17.legacy Versions : rh9: cvs-1.11.2-25.legacy Versions : fc1: cvs-1.11.17-1.2.legacy Versions : fc2: cvs-1.11.17-2.2.legacy Summary : A version control system. Description : CVS (Concurrent Version System) is a version control system that can record the history of your files (usually, but not always, source code). CVS only stores the differences between versions, instead of every version of every file you have ever created. CVS also keeps a log of who, when, and why changes occurred. --------------------------------------------------------------------- Update Information: An updated cvs package that fixes security bugs is now available. CVS (Concurrent Version System) is a version control system. A buffer overflow bug was found in the way the CVS client processes version and author information. If a user can be tricked into connecting to a malicious CVS server, an attacker could execute arbitrary code. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0753 to this issue. All users of cvs should upgrade to this updated package, which includes a backported patch to correct these issues. --------------------------------------------------------------------- Changelogs rh73: * Thu Apr 21 2005 Michal Jaegermann <michal@xxxxxxxxxxxx> 1.11.1p1-17.legacy - added originally cvs-1.11.17-CAN-2005-0753.patch from cvs-1.11.17-6.FC3 adjusted to 1.11.1p1 (two obvious rejects fixed and changed offsets). rh9: * Thu Apr 21 2005 Marc Deslauriers <marcdeslauriers@xxxxxxxxxxxx> 1.11.2-25.legacy - add security fix for CAN-2005-0753 fc1: * Mon May 02 2005 Marc Deslauriers <marcdeslauriers@xxxxxxxxxxxx> 1.11.17-1.2.legacy - added missing vim-minimal, sendmail and tcsh BuildRequires * Thu Apr 21 2005 Marc Deslauriers <marcdeslauriers@xxxxxxxxxxxx> 1.11.17-1.1.legacy - add security fix CAN-2005-0753 (Derek Price) fc2: * Mon May 02 2005 Marc Deslauriers <marcdeslauriers@xxxxxxxxxxxx> 1.11.17-2.2.legacy - added missing vim-minimal, sendmail and tcsh BuildRequires * Thu Apr 21 2005 Marc Deslauriers <marcdeslauriers@xxxxxxxxxxxx> 1.11.17-2.1.legacy - add security fix CAN-2005-0753 (Derek Price) --------------------------------------------------------------------- This update can be downloaded from: http://download.fedoralegacy.org/ (sha1sums) rh73: 44748e23bd996cce24d4ee94f8d690d54c9f02bd redhat/7.3/updates-testing/i386/cvs-1.11.1p1-17.legacy.i386.rpm 742788f35e8aaaa5ea2914cc30138f81ca733720 redhat/7.3/updates-testing/SRPMS/cvs-1.11.1p1-17.legacy.src.rpm rh9: 388ff1fb3678bbe9f548dd0de3b4c34a6b96edd0 redhat/9/updates-testing/i386/cvs-1.11.2-25.legacy.i386.rpm cbe6667d386716c93de98f33f6a0e52ab4b2224f redhat/9/updates-testing/SRPMS/cvs-1.11.2-25.legacy.src.rpm fc1: e88e07e612ef9a98760d7621feb62676c18744c2 fedora/1/updates-testing/i386/cvs-1.11.17-1.2.legacy.i386.rpm 83f4ea1da32946f9d77dd0fc70ea8d8b651b15d3 fedora/1/updates-testing/SRPMS/cvs-1.11.17-1.2.legacy.src.rpm fc2: e939ea46087822a17a68b6997ffd47df6cbe60bd fedora/2/updates-testing/i386/cvs-1.11.17-2.2.legacy.i386.rpm b5fc3ff86a90d18e9515fe151e1915878c2aabf6 fedora/2/updates-testing/SRPMS/cvs-1.11.17-2.2.legacy.src.rpm --------------------------------------------------------------------- Please test and comment in bugzilla.
Attachment:
signature.asc
Description: OpenPGP digital signature
-- fedora-legacy-list@xxxxxxxxxx http://www.redhat.com/mailman/listinfo/fedora-legacy-list
