Fedora je izdala nadogradnju programskog paketa Acpid koja otklanja otkriveni sigurnosni propust koji je moguće iskoristiti za DoS napad.

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2011-6460
2011-05-04 00:38:30
--------------------------------------------------------------------------------

Name        : acpid
Product     : Fedora 14
Version     : 2.0.9
Release     : 1.fc14
URL         : http://tedfelix.com/linux/acpid-netlink.html
Summary     : ACPI Event Daemon
Description :
acpid is a daemon that dispatches ACPI events to user-space programs.

--------------------------------------------------------------------------------
ChangeLog:

* Tue May  3 2011 Jiri Skala <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 2.0.9-1
- fixes #701340 - CVE-2011-1159 acpid: blocked writes can lead to acpid daemon
hang
- update to latest upstream 2.0.9
* Wed Dec  8 2010 Jiri Skala <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 2.0.7-1
- fixes #660459 - Should be able to set options with /etc/sysconfig/acpid
- update to latest upstream
* Wed Nov  3 2010 Jiri Skala <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 2.0.5-4
- fixes #648221 - SELinux is preventing /sbin/iwconfig access to a leaked
/dev/input/event0 file descriptor
* Wed Sep 29 2010 jkeating - 2.0.5-3.1
- Rebuilt for gcc bug 634757
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #688698 - CVE-2011-1159 acpid: blocked writes can lead to acpid
daemon hang
        https://bugzilla.redhat.com/show_bug.cgi?id=688698
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update acpid' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
https://admin.fedoraproject.org/mailman/listinfo/package-announce