-------------------------------------------------------------------------------- Fedora Test Update Notification FEDORA-2007-2496 2007-10-11 01:46:34.858267 -------------------------------------------------------------------------------- Name : wesnoth Product : Fedora 7 Version : 1.2.7 Release : 1.fc7 URL : http://www.wesnoth.org Summary : Turn-based strategy game with a fantasy theme Description : The Battle for Wesnoth is a turn-based strategy game with a fantasy theme. Build up a great army, gradually turning raw recruits into hardened veterans. In later games, recall your toughest warriors and form a deadly host against whom none can stand. Choose units from a large pool of specialists, and hand-pick a force with the right strengths to fight well on different terrains against all manner of opposition. Fight to regain the throne of Wesnoth, of which you are the legitimate heir, or use your dread power over the Undead to dominate the land of mortals, or lead your glorious Orcish tribe to victory against the humans who dared despoil your lands. Wesnoth has many different sagas waiting to be played out. You can create your own custom units, and write your own scenarios--or even full-blown campaigns. You can also challenge your friends--or strangers--and fight multi-player epic fantasy battles. -------------------------------------------------------------------------------- Update Information: Security fix release: A malicious user could send a long chat message with multibyte characters, the server would truncate the message on a fixed length, without paying attention to the multibyte characters. This led to invalid utf-8 on the client and an uncaught exception was thrown. -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 9 2007 Brian Pepple <bpepple@xxxxxxxxxxxxxxxxx> - 1.2.7-1 - Update to 1.2.7. Fixes #324841 (CVE-2007-3917) -------------------------------------------------------------------------------- References: [ 1 ] Bug #324841 - CVE-2007-3917 Buffer overflow in wesnoth triggerable by UTF-8 chat message https://bugzilla.redhat.com/show_bug.cgi?id=324841 [ 2 ] CVE-2007-3917 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3917 -------------------------------------------------------------------------------- Updated packages: 86fa718f30baadcf52679f8b23b384837b451033 wesnoth-server-1.2.7-1.fc7.ppc64.rpm 00b19cfeffebfbc84628aa75af3370d116470f04 wesnoth-debuginfo-1.2.7-1.fc7.ppc64.rpm 51c728a81880f7f121bdff5857832428d2453297 wesnoth-1.2.7-1.fc7.ppc64.rpm 6e3f912d8f6e888f5f6d4ca84df7e82780e8eb79 wesnoth-tools-1.2.7-1.fc7.ppc64.rpm fc41769352b116b2f35864af7ae18862b23e80c2 wesnoth-debuginfo-1.2.7-1.fc7.i386.rpm a2ce210c91148fac50ba45f7c24c076a9f093321 wesnoth-tools-1.2.7-1.fc7.i386.rpm bbdfaca0653bb6f91ef768895d9720085022531d wesnoth-server-1.2.7-1.fc7.i386.rpm 3984143fce4a6dda00c6727fb3e0d3078c060b5a wesnoth-1.2.7-1.fc7.i386.rpm 05efbcfbb82e65d3fcc97e577f00bfc94d3dc87c wesnoth-1.2.7-1.fc7.x86_64.rpm 507ce62d6fee103d3a2265ccf33a0dfafcc24546 wesnoth-debuginfo-1.2.7-1.fc7.x86_64.rpm 0a055ea8a91b1b81cc25a7c3005d8794f581897a wesnoth-tools-1.2.7-1.fc7.x86_64.rpm a96ae74484286aab773b41cb36cfca8c4537b213 wesnoth-server-1.2.7-1.fc7.x86_64.rpm f6ee0603946fe50fcf332536dd70deb18db30d4c wesnoth-debuginfo-1.2.7-1.fc7.ppc.rpm 7a2b12e84b8fd584a3845c36ac1d8f251f55a410 wesnoth-tools-1.2.7-1.fc7.ppc.rpm 09f216ddf5cc21d2bbf0dbe6bbb44c17876aa6c7 wesnoth-server-1.2.7-1.fc7.ppc.rpm 23770542db222b2d849100d83dd8b5c285d074fa wesnoth-1.2.7-1.fc7.ppc.rpm dd90f7d33b4827d3bf6fb6b3b67f7b90a166928d wesnoth-1.2.7-1.fc7.src.rpm This update can be installed with the "yum" update program. Use su -c 'yum --enablerepo=updates-testing update wesnoth' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. -------------------------------------------------------------------------------- -- fedora-test-list mailing list fedora-test-list@xxxxxxxxxx To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-test-list
