Security

pstotext Oct. 22, 2020, 10:43 a.m. Oct. 22, 2020, 10:43 a.m.
Version: 1.9-alt3
Summary: PostScript to text converter
Changelog:
- Applied patches from Debian and Gentoo (Fixes: CVE-2005-2536, CVE-2006-5869).
- Build now respects %optflags.
t1lib Oct. 21, 2020, 2:39 p.m. Oct. 21, 2020, 2:39 p.m.
Version: 5.1.2-alt6
Summary: Type 1 font rasterizer
Changelog:
- Applied security fixes from Gentoo (Fixes: CVE-2010-2642, CVE-2011-0433,
  CVE-2011-0764, CVE-2011-1552, CVE-2011-1553, CVE-2011-1554, CVE-2011-5244).
freecol Oct. 19, 2020, 3:38 p.m. Oct. 19, 2020, 3:38 p.m.
Version: 0.11.6-alt2
Summary: FreeCol is opensource Colonization clone.
Changelog:
- Applied security fix from Debian (Fixes: CVE-2018-1000825).
- Updated license tag.
proftpd Oct. 8, 2020, 1:09 p.m. Oct. 8, 2020, 1:09 p.m.
Version: 1.3.6-alt0.4.ga73dbfe3b
Summary: ProFTPd -- Professional FTP Server
Changelog:
- Applied security fixes from upstream (Fixes: CVE-2020-9272, CVE-2020-9273).
- Built with system libcap.
libssh2 Oct. 2, 2020, 12:41 p.m. Oct. 2, 2020, 12:41 p.m.
Version: 1.9.0-alt2
Summary: A library implementing the SSH2 protocol
Changelog:
- Applied security fixes from upstream (Fixes: CVE-2019-17498).
upx Oct. 1, 2020, 5:32 p.m. Oct. 1, 2020, 5:32 p.m.
Version: 3.96-alt1
Summary: The Ultimate Packer for eXecutables
Changelog:
- Updated to upstream version 3.96 (Fixes: CVE-2019-20805).
libetpan Oct. 1, 2020, 4:34 p.m. Oct. 1, 2020, 4:34 p.m.
Version: 1.9.4-alt2
Summary: This mail library provide a portable, efficient middleware for different kinds of mail access
Changelog:
- Applied security fixes from upstream (Fixes: CVE-2020-15953).
libnghttp2 June 20, 2020, 11:33 a.m. June 20, 2020, 11:33 a.m.
Version: 1.41.0-alt1
Summary: HTTP/2.0 C Library
Changelog:
- 1.40.1 (Closes: #38626)
- Security fix: CVE-2020-11080
gst-plugins0.10-base April 20, 2020, 12:10 p.m. April 20, 2020, 12:10 p.m.
Version: 0.10.36-alt3
Summary: An essential set of GStreamer plugins (legacy version)
Changelog:
- Apply patches from Debian.
- Fixes:
  + CVE-2017-5837
  + CVE-2017-5844
  + CVE-2019-9928
- Fix build with make 4.3.0 (patch obtained from https://bugs.gentoo.org/show_bug.cgi?id=706076).
- Fix License tag according to SPDX.
itop April 9, 2020, 9:55 p.m. April 9, 2020, 9:55 p.m.
Version: 2.6.3-alt1
Summary: IT Operations Portal
Changelog:
- New version 2.6.3
- Security fixes:
+ CVE-2019-19821 : Improper Privilege Management
- Removed Python requirements
libadplug Sept. 22, 2019, 5:34 p.m. Sept. 22, 2019, 5:34 p.m.
Version: 2.2.1-alt3
Summary: AdLib sound player library
Changelog:
- added fedora patches:
  + inline (fixes e2k ftbfs)
  + cve-2018-17825 (fixes: CVE-2018-17825)
  + (signed-char unneeded, worked around in previous build)
- NB: there's 2.3.1 release over at guthub
libpng16 Aug. 27, 2019, 5:47 p.m. Aug. 27, 2019, 5:47 p.m.
Version: 1.6.37-alt1
Summary: A library of functions for manipulating PNG image format files
Changelog:
- 1.6.37 (fixes: CVE-2018-14048, CVE-2018-14550, CVE-2019-7317)
rzip Aug. 22, 2019, 2:30 p.m. Aug. 22, 2019, 2:30 p.m.
Version: 2.1-alt3
Summary: A large-file compression program
Changelog:
- Applied security fix from Gentoo (Fixes: CVE-2017-8364)
kernel-image-tegra July 6, 2019, 3:26 p.m. July 6, 2019, 3:26 p.m.
Version: 4.9.140-alt2
Summary: The Linux kernel (the core of the Linux operating system)
Changelog:
- fixed CVE-2019-11478, CVE-2019-11477, CVE-2019-11833, CVE-2019-3882, CVE-2019-3819, CVE-2019-7222, CVE-2019-3701, CVE-2018-19985
ruby-loofah March 27, 2019, 4:32 p.m. March 27, 2019, 4:32 p.m.
Version: 2.2.3-alt1
Summary: HTML/XML manipulation and sanitization based on Nokogiri
Changelog:
- 2.2.3 (CVE-2018-16468);
- fix version in gamespec for packaging (closes: #36441).
openslp Dec. 1, 2018, 2:47 a.m. Dec. 1, 2018, 2:47 a.m.
Version: 2.0.0-alt2
Summary: OpenSLP implementation of Service Location Protocol V2
Changelog:
- Fixed libslp namespace (closes: #35692).
- Enabled SLPv2 Security.
- Enabled testing.
- Applied security fixes (fixes: CVE-2012-4428, CVE-2016-4912, CVE-2016-7567,
  CVE-2017-17833).
NetworkManager-vpnc Aug. 1, 2018, 8:25 p.m. Aug. 1, 2018, 8:25 p.m.
Version: 1.2.6-alt1
Summary: NetworkManager VPN plugin for vpnc
Changelog:
- Disable libnm-glib-* support.
- Fix build without libnm-glib-*.
- Updated to 1.2.6 (fixes CVE-2018-10900).
libwmf Sept. 27, 2017, 4:16 p.m. Sept. 27, 2017, 4:16 p.m.
Version: 0.2.8.4-alt13
Summary: A library to convert wmf files
Changelog:
- Secutity (Fixes: CVE-2015-0848, CVE-2015-4588, CVE-2015-4695,
  CVE-2015-4696, CVE-2016-9011)
rssh July 1, 2016, 1:40 p.m. July 1, 2016, 1:40 p.m.
Version: 2.3.4-alt2
Summary: Restricted shell for scp or sftp
Changelog:
- really update sources to 2.3.4 fixes (CVE-2012-3478 and CVE-2012-2252)
- add patch for rsync3 compat
pxz Jan. 27, 2015, 3:47 a.m. Jan. 27, 2015, 3:47 a.m.
Version: 4.999.9beta-alt3
Summary: Parallel LZMA compressor using liblzma
Changelog:
- CVE-2015-1200 fix (patch from debian bug #775306)
kernel-src-kvm May 13, 2014, 2:21 a.m. May 13, 2014, 2:21 a.m.
Version: 3.10.21-alt8
Summary: KVM modules sources for Linux kernel
Changelog:
- updates from linux-3.10.40:
  + KVM: ioapic: fix assignment of ioapic->rtc_status.pending_eoi (CVE-2014-0155)
Back to Top