Sisyphus repository
Last update: 2018-06-25 06:10:25 +0400 | SRPMs: 9785 | Sign in or Sign up
en ru uk br
Security fixes

openttd-0.7.5-alt1  build 2010-01-27

Group: Games/Strategy
Summary: An open source clone of the Microprose game "Transport Tycoon Deluxe".
Changes:

- new version (CVE-2009-4007 fixed)

MySQL-5.0.89-alt1  build 2010-01-25

Group: Databases
Summary: MySQL: A very fast and reliable SQL database engine
Changes:

- new version (closes #18943)
- fixed CVE-2009-2446 from upstream (closes #20724)
- setup utf8 encoding instead of latin1 by default (closes #12390)
- include C99 aliasing violation patch from mythtv (closes #22452)
- removed username-length patch
- wait for mysqld shutdown (closes #22234)
- don't run initial setup mysql database if mysql.user table already exists

GraphicsMagick-1.3.8-alt1  build 2010-01-23

Group: Graphics
Summary: An X application for displaying and manipulating images
Changes:

- New version
- Fix ALT (#22348)
- Change number of bits in a pixel quantum 8 -> 16
- Fix build with libfpx
- Security Fixes:
+ Fix for CVE-2009-1882 "Integer overflow in the XMakeImage function".
+ Fix lockup due to hanging in loop while parsing malformed
sub-image specification (SourceForge issue 2886560).
+ Libltdl: Updated libtool to 2.2.6b in order to fix security issue.
Resolves CVE-2009-3736 as it pertains to GraphicsMagick.
- Bug fixes:
+ -convolve, -recolor: Validate that user-provided matrix is square
when parsing -convolve and -recolor commands in order to avoid a
core dump.
+ CALS: Reading images taller than the image width resulted in a
failure.
+ ConstituteImage(), DispatchImage(): 'A' and 'T' should indicate
transparency and 'O' should indicate opacity. Behavior was
inconsistent. In some cases 'O' meant transparency while in other
cases it meant opacity. Also, in a few cases, matte was not
getting enabled in the image as it should.
+ DCRAW: Module name was not registered so modules based builds were
not supporting formats provided via 'dcraw'.
+ GetOptimalKernelWidth1D(), GetOptimalKernelWidth2D(): In the Q32
build, convolution kernel size was estimated incorrectly for large
sigmas on 32-bit systems due to arithmetic overflow. This could
cause wrong results for -convolve, -blur, -sharpen, and other
algorithms which use these functions.
+ Image Size: Fixed the ability to pass the image size via the
filename specification like "myfile.jpg[640x480]" rather than
needing to use -size.
+ IPTC: Blob data needed to be padded to an even size. Size is now
correctly reported.
+ IPTC: Returned IPTC string values were one character too short.
+ Large Files: Large pixel cache files were not working under GNU Linux.
+ JP2: Fixed some value scaling problems.
+ JP2: Fix possible crash at exit when Jasper is used by a modules build.
+ MPC: is_monochrome and is_grayscale flags were not managed
properly for the MPC coder.
+ PCL: Page was not always being ejected.
+ PNG: The png8 encoder would fail when trying to write a 1-color image.
+ PSD: PSD parser was confused by 0x0 pixel layers, resulting in
image data corruption of all following layers.
+ -rotate, -shear: Some internally-reported errors were potentially
being lost.
+ Subrange/stdin: Commands now support reading an image from stdin
in conjunction with a subrange specification (e.g. "-[1]").
+ Magick++ STL ShadeImage: Implementation was completely botched.
- New Features:
+ CALS Type 1 files may now be written (Work contributed by John
Sergeant). CALS support is dependent on the TIFF library.
+ GROUP4RAW encoder supports reading/writing RAW Group4 data.
+ JP2: JPEG 2000 may now be written in arbitrary bit depths ranging
from 2 to 16 rather than just 8 or 16.
+ JPEG: IJG JPEG library version 7 is now supported.
+ JPEG: Added jpeg:block-smoothing and jpeg:fancy-upsampling defines
to control these JPEG library options.
+ JPEG: Detect and apply colorspaces appropriately for ITU FAX JPEG.
+ Resource Limits: There is now a "threads" resource limit which
allows specifying the number of OpenMP threads which may be used,
similar to the OMP_NUM_THREADS environment variable.
+ TIFF: Allow CIELAB TIFF to be read.
+ MagickGetImageAttribute()/MagickSetImageAttribute(): New Wand
methods to support getting and setting an image attribute.
Contributed by Mikko Koppanen.
+ ClonePixelWand(): New Wand method to deep-copy an existing pixel wand.
+ ClonePixelWands(): New Wand method to deep-copy an array of
existing pixel wands.
+ MagickCdlImage(): New Wand method to apply the ASC CDL to an
image.
+ MagickGetImageBoundingBox(): New Wand method to return the crop
bounding box required to remove any solid-color border from the
image.
+ MagickGetImageFuzz(), MagickSetImageFuzz(): New Wand methods to
get and set the color comparison fuzz factor.
+ MagickHaldClutImage(): New Wand method to apply a Hald CLUT to an
image.
+ MagickSetResolution(): New Wand method to set the wand resolution.
+ MagickSetResolutionUnits(): New Wand method to set the wand
resolution units.

tomcat6-0:6.0.18-alt6_8jpp5  build 2010-01-14

Group: Development/Java
Summary: Apache Servlet/JSP Engine, RI for Servlet 2.5/JSP 2.1 API
Changes:

- NMU
- Applied upstream patches to fix following vulnerabilities:
+ CVE-2009-0033: DoS when using Java AJP connector
(Closes: #20313)
+ CVE-2009-0580: User enumeration vulnerability with FORM authentication
(Closes: #20315)
+ CVE-2009-0781: XSS in calendar example

gzip-1.3.5-alt6  build 2010-01-13

Group: Archiving/Compression
Summary: The GNU data compression program
Changes:

- Applied upstream fix for integer underflow bug (CVE-2010-0001).

fetchmail-6.3.13-alt1  build 2010-01-01

Group: Networking/Mail
Summary: Full-featured POP/IMAP/ETRN mail retrieval daemon
Changes:

- 6.3.13
+ new "softbounce" global option;
+ CVE-2009-2666: improper SSL/TLS X.509 certificates validation (fixed
in 6.3.11);
+ translation updates;
see NEWS for details.

ruby-1.9.1-alt1.r26040.1  build 2009-12-29

Group: Development/Ruby
Summary: Interpreter of object-oriented scripting language Ruby 1.9
Changes:

- Fix String#ljust, String#rjust and String#center breakage after
CVE-2009-4124 fix

NetworkManager-gnome-0.7.2-alt2.git20091228.M51.1  build 2009-12-28

Group: Graphical desktop/GNOME
Summary: GNOME applications for use with NetworkManager
Changes:

- new upstream git snapshot (NETWORKMANAGER_APPLET_0_7 branch), including:
+ fix potential leakage of secrets onto the system bus (CVE-2009-4145)
+ fix possible connections to spoofed WPA Enterprise networks (CVE-2009-4144)

kdegraphics-3.5.10-alt4  build 2009-12-24

Group: Graphical desktop/KDE
Summary: K Desktop Environment - Graphics
Changes:

- update to lastest branch 3.5
- Security fixes:
- CVE-2009-0945
- CVE-2009-1709

netatalk-2.0.5-alt1  build 2009-12-22

Group: Networking/Other
Summary: AppleTalk networking programs
Changes:

- 2.0.5:
+ fix CVE-2008-5718
+ more bugfixes

poppler5-0.12.2-alt1  build 2009-12-11

Group: Publishing
Summary: PDF rendering library
Changes:

- new version
- CVE-2009-3607

kdelibs-3.5.10-alt11  build 2009-12-11

Group: Graphical desktop/KDE
Summary: K Desktop Environment - Libraries
Changes:

- update from lastest 3.5 branch
- fix CVE-2009-0689

ruby-1.9.1-alt1.r26040  build 2009-12-09

Group: Development/Ruby
Summary: Interpreter of object-oriented scripting language Ruby 1.9
Changes:

- SVN revision 26040 AKA 1.9.1p376 (2009-12-07)
+ CVE-2009-4124

kernel-image-std-def-1:2.6.30-alt15  build 2009-12-07

Group: System/Kernel and hardware
Summary: The Linux kernel (the core of the Linux operating system)
Changes:

- [SECURITY] Fix CVE-2009-1298
- fixes in Samsung U200 driver. thx to mikhail@linux-rb.ru
- Add support Samsung YP-CP3. Thx to vitty@altlinux.org

asterisk1.6.2-1.6.2.0-alt0.rc7  build 2009-12-02

Group: System/Servers
Summary: Open source PBX
Changes:

- 1.6.2.0-rc7
- CVE 2009-4055

gimp-2.6.7-alt5  build 2009-11-17

Group: Graphics
Summary: The GNU Image Manipulation Program
Changes:

- fixed CVE-2009-3909

xpdf-3.02-alt7  build 2009-11-15

Group: Office
Summary: Portable Document Format (PDF) suite
Changes:

- Apply xpdf-3.02pl4 security patch to fix:
CVE-2009-3603, CVE-2009-3604, CVE-2009-3605, CVE-2009-3606,
CVE-2009-3608, CVE-2009-3609.

apr1-1.3.8-alt1.1  build 2009-11-13

Group: System/Libraries
Summary: Apache Portable Runtime
Changes:

* Fri Aug 14 2009 Aleksey Avdeev 1.3.8-alt1
- New version (1.3.8)
- Security fixes (CVE-2009-2412)
- Add use %make check (thanks to Graham Leggett)

gimp-2.6.7-alt4  build 2009-11-12

Group: Graphics
Summary: The GNU Image Manipulation Program
Changes:

- fixed CVE-2009-1570

nspr-1:4.8.2-alt1  build 2009-11-09

Group: System/Libraries
Summary: Netscape Portable Runtime (NSPR)
Changes:

- New stable release 4.8.2.
- Fix CVE-2009-1563, CVE-2009-2463 (ALT#22207).

openssl098-0.9.8l-alt1  build 2009-11-07

Group: System/Base
Summary: OpenSSL - Secure Sockets Layer and cryptography shared libraries and tools
Changes:

- Updated to 0.9.8l with security fixes and improvements.
- Includes CVE-2009-3555

kdegraphics-3.5.10-alt3  build 2009-10-19

Group: Graphical desktop/KDE
Summary: K Desktop Environment - Graphics
Changes:

- security fixes:
- CVE-2009-3608

poppler5-0.12.1-alt1  build 2009-10-19

Group: Publishing
Summary: PDF rendering library
Changes:

- new version
- add linker version script for libpoppler
- security fixes:
- CVE-2009-3608 ObjectStream integer overflow

apache2-2.2.14-alt1  build 2009-10-06

Group: System/Servers
Summary: The most widely used Web server on the Internet
Changes:

- 2.2.14
- Security fixes (CVE-2009-2412, CVE-2009-2699, CVE-2009-3094, CVE-2009-3095)
- Update patchsets:
+ itk for apache2.2-mpm-itk-2.2.11-02 (Closes: #21486)
+ peruser for httpd-2.2.3-peruser-0.3.0-dc3

ss5-3.6.4-alt2.rel3.2  build 2009-10-05

Group: System/Servers
Summary: Full featured SOCKS4 and SOCKS5 server
Changes:

- NMU: security fix for CVE-2009-2368 (array index overflow) (ALT #20701)
+ thanks crux@ for heads-up

samba-3.0.37-alt1  build 2009-10-01

Group: System/Servers
Summary: Samba SMB/CIFS server
Changes:

- Security fixes:
+ CVE-2009-2813
+ CVE-2009-2906
+ CVE-2009-2948

newt52-0.52.11-alt1  build 2009-09-25

Group: System/Libraries
Summary: A development library for text mode user interfaces.
Changes:

- 0.52.11
- Update URL
- fix buffer overflow in textbox when reflowing (CVE-2009-2905)

GraphicsMagick-1.3.7-alt1  build 2009-09-18

Group: Graphics
Summary: An X application for displaying and manipulating images
Changes:

- New version
- Security Fixes:
+ PCX: Detect improper rows, columns, or depth. Fixes CVE-2008-1097
"Memory corruption in ImageMagick's PCX coder".
+ DrawDashPolygon: Avoid a crash which sometimes occured with tiny
polygons.
- Bug fixes:
+ JPEG: Profile chunks need to be concatentated in order to build
the whole profile. This was not working so embedded profiles
larger than 32K or maybe 64K were being corrupted. This bug was
introduced in GraphicsMagick 1.2.
+ Meta: Fix memory leaks.
+ Meta: Work better with with IPTC record 2 blocks and deal better
with IPTC embedded in an 8BIM profile. Fixes by John Sergeant.
+ MPC: Fix crash when reading MPC and the input image is modified.
+ PNG: Ensure that the opacity channel is properly initialized.
+ -profile: Lowercase arguments were sometimes not working as
expected.
+ Topol: Topol reader actually works now and is included in test suite.
+ TIFF: Read and write JPEG-compressed grayscale TIFF correctly.
+ VisualMagick configure now works properly when output paths are
specified.
+ WMF: Eliminate memory leaks.
- New Features:
+ MagickWand: New method MagickSetCompressionQuality() to allow
setting the compression quality.
+ MagickWand: New method CloneDrawingWand() to deep-copy a drawing wand.
+ MagickWand: New method DrawGetException() to retrieve information
regarding the last drawing wand exception (if any).
+ MagickWand: New method DrawClearException() to clear a drawing wand
exception.
+ Magick++: New Image method cdl() to apply the ASC CDL.
+ Magick++: New Image method colorMatrix() to apply a color matrix
to the image channels.
+ Magick++: New Image method haldClut() to apply a color lookup
table (Hald CLUT) to the image.
+ MSL/Conjure: Added a new 'profile' command which applies, adds, or
removes one or more IPTC, ICC or generic profiles from a file.
Work contributed by John Sergeant.
+ Added a 'time' subcommand to provide Unix-style 'time' output when
a 'time' capability is missing, or the reporting format is
inconsistent. For example 'gm time convert ...'.
- Feature improvements:
+ ColorMatrixImage(): Add opaque opacity channel when needed.
+ PDF & PS: Use '-type palette' prior to input file name to cause
Ghostscript to return a dithered colormapped image.
+ PNG: Now compiles with libpng-1.4.0beta74 and later.
+ TIFF: Libtiff in Windows build is upgraded to 3.9.1. This allows
GraphicsMagick to read and write 16 and 24 bit float TIFF files.
+ Windows code to find Ghostscript is rewritten from scratch.
- Performance Improvements:
+ Drawing of points, lines, and polygons (and complex shapes based
on these) is now accelerated using OpenMP with excellent speed-up.
+ ICC color transforms now see linear speedup from OpenMP.
+ Rotate: For rotations of 90 or 270 degrees, tile sizes are
selected more appropriately.
- Behavior Changes:
+ No longer clear the exception structure at the start of
ReadImage() and other similar functions since this sometimes masks
errors. The API user is expected to make sure that the exception
structure is clean prior to invoking a function.
+ SVG: Writer is now disabled since it usually does not work properly.

qt4-4.5.2-alt6  build 2009-09-11

Group: System/Libraries
Summary: Shared library for the Qt4 GUI toolkit
Changes:

- add patch to fix CVE-2009-2700
- patch from kde-qt to add support for isOpen in mysql driver plugin
- add patch from MDV to fix qmake wformat patch

multipath-tools-0.4.8-alt2  build 2009-08-26

Group: System/Configuration/Hardware
Summary: Tools to manage multipath devices with device-mapper
Changes:

- Apply a bunch of Fedora patches, notable changes are:
+ kpartx now works with logical partitions
+ fix for CVE-2009-0115
+ support for newer scsi_id invocation scheme.
- Some cosmetic spec file changes (spelling, descriptions rewrite).
- Added cciss_id utility.
- Added default configuration file.
- Added init script for multipathd.

qemu-0.11.50-alt1  build 2009-08-21

Group: Emulators
Summary: QEMU CPU Emulator
Changes:

- updated to v0.11.0-rc0-564-g757506d
+ no KQEMU support any more
+ fixes CVE-2008-0928 (ALT #20010)
+ keyboard works fine without -k (ALT #15774)
+ framebuffer works fine with -kernel (ALT #11324)
- build linux-user targets as PIE and drop link hack
- enable KVM support
- enable curl support
- enable IO thread
- enable VNC SASL support
- enable bluez support

kernel-image-ovz-rhel-2.6.18-alt10  build 2009-08-20

Group: System/Kernel and hardware
Summary: Virtuozzo Linux kernel (the core of the Linux operating system)
Changes:

- CVE-2009-2698: fix MSG_PROBE crash

libneon-0.28.6-alt1  build 2009-08-19

Group: System/Libraries
Summary: neon is an HTTP and WebDAV client library
Changes:

- 0.28.6:
+ fixed CVE-2009-2473, CVE-2009-2474

pidgin-mini-2.6.1-alt1  build 2009-08-19

Group: Networking/Instant messaging
Summary: A GTK+ based multiprotocol instant messaging client
Changes:

- 2.6.1
- fixed CVE-2009-2694

pidgin-2.6.1-alt1  build 2009-08-19

Group: Networking/Instant messaging
Summary: A GTK+ based multiprotocol instant messaging client
Changes:

- 2.6.1
- fixed CVE-2009-2694

subversion-1.6.4-alt1  build 2009-08-18

Group: Development/Other
Summary: A version control system
Changes:

- Updated to 1.6.4 (CVE-2009-2411; closes: #21097).

libxml2-1:2.7.3-alt2  build 2009-08-17

Group: System/Libraries
Summary: The library for manipulating XML files
Changes:

- Applied FICORA #245608 patches for CVE-2009-2414 and CVE-2009-2416.
- xmlversion.h: Removed ATTRIBUTE_PRINTF redefinition.
- Fixed some compiler warnings.

kernel-image-ovz-smp-2.6.27-alt9  build 2009-08-17

Group: System/Kernel and hardware
Summary: The Linux kernel (the core of the Linux operating system)
Changes:

- CVE-2009-2692 kernel: uninit op in SOCKOPS_WRAP() leads to privesc
- ALT #20616 - Debug messages from EDAC pollute syslog

kernel-image-un-def-1:2.6.30-alt9  build 2009-08-17

Group: System/Kernel and hardware
Summary: The Linux kernel (the core of the Linux operating system)
Changes:

- [SECURITY] Fix CVE-2009-2692

kernel-image-std-pae-1:2.6.30-alt9  build 2009-08-17

Group: System/Kernel and hardware
Summary: The Linux kernel (the core of the Linux operating system)
Changes:

- [SECURITY] Fix CVE-2009-2692

kernel-image-ovz-rhel-2.6.18-alt9  build 2009-08-17

Group: System/Kernel and hardware
Summary: Virtuozzo Linux kernel (the core of the Linux operating system)
Changes:

- CVE-2009-2692: uninit op in SOCKOPS_WRAP() leads to privesc
- Add patches from Solar Designer

kernel-image-std-def-1:2.6.30-alt9  build 2009-08-17

Group: System/Kernel and hardware
Summary: The Linux kernel (the core of the Linux operating system)
Changes:

- [SECURITY] Fix CVE-2009-2692

kernel-image-el-smp-1:2.6.30-alt9  build 2009-08-17

Group: System/Kernel and hardware
Summary: The Linux kernel (the core of the Linux operating system)
Changes:

- [SECURITY] Fix CVE-2009-2692

aprutil1-1.3.9-alt1  build 2009-08-16

Group: System/Libraries
Summary: Apache Portable Runtime Utility shared library
Changes:

- New version (1.3.9)
- Security fixes (CVE-2009-2412)

curl-7.19.6-alt1  build 2009-08-13

Group: Networking/File transfer
Summary: Gets a file from a FTP, GOPHER or HTTP server
Changes:

- new version (CVE-2009-2417)

centerim-4.22.8-alt1  build 2009-08-11

Group: Networking/Instant messaging
Summary: Console ncurses based IM client. ICQ, Yahoo!, AIM, IRC, MSN, Gadu-Gadu and Jabber protocols are supported. Internal RSS reader is also provided
Changes:

- 4.22.8
- fix connection to the Yahoo messanger protocol
- fix CVE-2008-4776

apache2-2.2.12-alt1  build 2009-07-30

Group: System/Servers
Summary: The most widely used Web server on the Internet
Changes:

- 2.2.12
- Security fixes (CVE-2008-2939, CVE-2009-0023, CVE-2009-1191, CVE-2009-1195,
CVE-2009-1890, CVE-2009-1891, CVE-2009-1955 and CVE-2009-1956)
(Closes: #20218, #20674 and #20760)
- Add support new MIME types (Closes: #11460)

bind-9.3.6-alt5  build 2009-07-28

Group: System/Servers
Summary: ISC BIND - DNS server
Changes:

- Backported upstream fix for a remote DoS bug (CVE-2009-0696).

kernel-image-tmc-tc-2.6.27-alt3  build 2009-07-24

Group: System/Kernel and hardware
Summary: The Linux kernel (the core of the Linux operating system)
Changes:

- 2.6.27.27
+ includes CVE-2009-1895 fix

pdfedit-0.4.3-alt1  build 2009-07-22

Group: File tools
Summary: Editor for manipulating PDF documents
Changes:

- 0.4.3 (closes: #20846)
+ fixes hordes of security vulnerabilities in xpdf-derived JBIG2 code:
CVE-2009-0146, CVE-2009-0147, CVE-2009-0166, CVE-2009-0799,
CVE-2009-0800, CVE-2009-1179, CVE-2009-1180, CVE-2009-1181,
CVE-2009-1182, CVE-2009-1183, CVE-2009-1187, CVE-2009-1188
+ thanks crux@ for prompt notification

  « First         1     2         4         6     7     8            Last »  

 
© 2009–2018 Igor Zubkov