U radu programskog paketa perl-Gtk2-MozEmbed uočeno je i ispravljeno više sigurnosnih ranjivosti. Udaljeni napadač ranjivosti je mogao iskoristiti za proizvoljno izvršavanje programskog koda, DoS (eng. Denial of Service) napad te otkrivanje povjerljivih podataka.

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2011-13465
2011-09-29 01:06:17
--------------------------------------------------------------------------------

Name        : perl-Gtk2-MozEmbed
Product     : Fedora 15
Version     : 0.09
Release     : 1.fc15.4
URL         : http://search.cpan.org/dist/Gtk2-MozEmbed
Summary     : Interface to the Mozilla embedding widget
Description :
This module allows you to use the Mozilla embedding widget from Perl.

--------------------------------------------------------------------------------
Update Information:

Update to new upstream Firefox version 7.0, fixing multiple security issues
detailed in the upstream advisories:

* http://www.mozilla.org/security/known-vulnerabilities/firefox.html#firefox7

This update also includes all packages depending on gecko-libs rebuilt against
the new version of Firefox / XULRunner.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 27 2011 Jan Horak <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 0.09-1.4
- Rebuild against newer gecko
* Tue Sep  6 2011 Jan Horak <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 0.09-1.3
- Rebuild against newer gecko
* Wed Aug 17 2011 Jan Horak <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 0.09-1.2
- Rebuild against newer gecko
* Wed Jun 22 2011 Jan Horak <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 0.09-1.1
- Rebuild against newer gecko
* Sun May 15 2011 Remi Collet <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> 0.09-1
- update to 0.09
- remove patch merged upstream (43306)
- add link to open upstream bug (68212 and 68213)
* Sat May 14 2011 Remi Collet <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> 0.08-8
- remove pixbuf patch, no more required
* Thu May 12 2011 Iain Arnell <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> 0.08-7.4
- Rebuild against newer gecko (2.0.1)
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update perl-Gtk2-MozEmbed' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
https://admin.fedoraproject.org/mailman/listinfo/package-announce