Security

libmspack Jan 21, 2021, 06:16 PMJan 21, 2021, 06:16 PM
Version: 0.6-alt2
Summary: Compressors and decompressors for Microsoft compression formats
Changelog:
- Applied security fix from upstream (Fixes CVE-2018-18584).
spice-vdagent Jan 21, 2021, 03:40 PMJan 21, 2021, 03:40 PM
Version: 0.21.0-alt1
Summary: Agent for Spice guests
Changelog:
- new version 0.21.0 (Fixes CVE-2020-25650, CVE-2020-25651, CVE-2020-25652, CVE-2020-25653).
fleet Jan 21, 2021, 02:37 PMJan 21, 2021, 02:37 PM
Version: 3.6.0-alt1
Summary: The premier osquery fleet manager.
Changelog:
- Updated to upstream version 3.6.0 (Fixes: CVE-2020-26276).
rclone Jan 21, 2021, 11:53 AMJan 21, 2021, 11:53 AM
Version: 1.53.4-alt1
Summary: rsync for cloud storage
Changelog:
- New version 1.53.4 (Fixes: CVE-2020-28924).
x11vnc Jan 21, 2021, 09:31 AMJan 21, 2021, 09:31 AM
Version: 0.9.16-alt2
Summary: VNC server for real X displays
Changelog:
- Applied security fix from upstream (Fixes: CVE-2020-29074).
libexif Jan 19, 2021, 01:26 AMJan 19, 2021, 01:26 AM
Version: 0.6.22-alt3
Summary: libexif is a library for parsing, editing, and saving EXIF data
Changelog:
- added upstream commit:
  + fixed a incorrect overflow check that could be optimized away
    (fixes CVE-2020-0452)
a2ps Dec 18, 2020, 03:52 PMDec 18, 2020, 03:52 PM
Version: 4.14-alt3
Summary: Any to PostScript filter
Changelog:
- Applied security patches from Debian and Gentoo (Fixes: CVE-2014-0466, CVE-2015-8107).
icoutils Dec 18, 2020, 10:46 AMDec 18, 2020, 10:46 AM
Version: 0.32.3-alt1
Summary: Utility for extracting and converting Microsoft icon and cursor files
Changelog:
- Updated to upstream version 0.32.3 (Fixes: CVE-2017-5208,
  CVE-2017-5331, CVE-2017-5332, CVE-2017-5333).
dnstracer Dec 17, 2020, 04:07 PMDec 17, 2020, 04:07 PM
Version: 1.9-alt2
Summary: A tool to trace DNS queries
Changelog:
- Applied security patch from Gentoo (Fixes: CVE-2017-9430).
mgetty Dec 17, 2020, 12:24 PMDec 17, 2020, 12:24 PM
Version: 1.2.1-alt1
Summary: A getty replacement for use with data and fax modems
Changelog:
- Updated to upstream version 1.2.1 (Fixes: CVE-2018-16741, CVE-2018-16742,
  CVE-2018-16743, CVE-2018-16744, CVE-2018-16745, CVE-2019-1010189, CVE-2019-1010190).
3proxy Dec 9, 2020, 02:46 PMDec 9, 2020, 02:46 PM
Version: 0.6.1-alt2
Summary: Proxy server
Changelog:
- Applied security fix from upstream (Fixes: CVE-2019-14495).
mupdf Dec 9, 2020, 01:25 PMDec 9, 2020, 01:25 PM
Version: 1.18.0-alt1
Summary: A lightweight PDF viewer and toolkit
Changelog:
- Updated to upstream version 1.18.0 (Fixes: CVE-2017-5991, CVE-2018-10289,
  CVE-2018-16647, CVE-2018-16648, CVE-2019-14975, CVE-2020-26519).
irssi Dec 8, 2020, 05:39 PMDec 8, 2020, 05:39 PM
Version: 1.2.2-alt1
Summary: Modular text mode IRC client with Perl scripting
Changelog:
- Updated to upstream version 1.2.2 (Fixes: CVE-2019-13045, CVE-2019-15717).
libiec61850 Dec 8, 2020, 03:52 PMDec 8, 2020, 03:52 PM
Version: 1.4.2.1-alt1
Summary: Open source libraries for IEC 61850 and IEC 60870-5-104
Changelog:
- Updated to upstream version 1.4.2.1 (Fixes: CVE-2019-6135, CVE-2019-6136,
  CVE-2019-6138, CVE-2019-6719, CVE-2019-16510, CVE-2019-1010300, CVE-2020-7054).
libtomcrypt Dec 8, 2020, 02:29 PMDec 8, 2020, 02:29 PM
Version: 1.18.2-alt3
Summary: A comprehensive, portable cryptographic toolkit
Changelog:
- Applied security fix from upstream (Fixes: CVE-2019-17362).
lout Dec 8, 2020, 11:09 AMDec 8, 2020, 11:09 AM
Version: 3.40-alt4
Summary: The Lout document formatting language
Changelog:
- Applied security patch from Fedora (Fixes: CVE-2019-19917, CVE-2019-19918)
helm Nov 23, 2020, 04:02 PMNov 23, 2020, 04:02 PM
Version: 3.4.1-alt1
Summary: The Kubernetes Package Manager
Changelog:
- Updated to upstream version 3.4.1 (Fixes: CVE-2020-4053, CVE-2020-11013,
  CVE-2020-15184, CVE-2020-15185, CVE-2020-15186, CVE-2020-15187).
consul Nov 23, 2020, 11:34 AMNov 23, 2020, 11:34 AM
Version: 1.8.6-alt1
Summary: Consul is a tool for service discovery and configuration
Changelog:
- Updated to upstream version 1.8.6 (Fixes: CVE-2019-9764, CVE-2019-12291,
  CVE-2020-7219, CVE-2020-7955, CVE-2020-12797, CVE-2020-13170, CVE-2020-13250).
sqliteodbc Nov 20, 2020, 03:19 PMNov 20, 2020, 03:19 PM
Version: 0.9996-alt3
Summary: ODBC driver for SQLite
Changelog:
- Updated rpm post script (Fixes: CVE-2020-12050).
jbig2dec Nov 20, 2020, 12:52 PMNov 20, 2020, 12:52 PM
Version: 0.19-alt1
Summary: A decoder implementation of the JBIG2 image compression format
Changelog:
- Updated to upstream version 0.19 (Fixes: CVE-2016-9601, CVE-2020-12268).
libXtst Nov 17, 2020, 09:24 AMNov 17, 2020, 09:24 AM
Version: 1.2.3-alt1
Summary: The Xtst Library
Changelog:
- 1.2.3
- securuty fixes: CVE-2016-7951, CVE-2016-7952
libXrender Nov 17, 2020, 09:15 AMNov 17, 2020, 09:15 AM
Version: 0.9.10-alt1
Summary: X Render Library
Changelog:
- 0.9.10
- securuty fixes: CVE-2016-7949, CVE-2016-7950
unzip Nov 13, 2020, 01:07 AMNov 13, 2020, 01:07 AM
Version: 6.0-alt4
Summary: An utility for unpacking zip archives
Changelog:
- Build with bzip2 compression method support
- Massive apply security patches from Fedora and openSUSE
- Fixes:
  + CVE-2014-8139 CRC32 verification heap-based buffer overread
  + CVE-2014-8140 out-of-bounds write issue in test_compr_eb()
  + CVE-2014-8141 getZip64Data() out-of-bounds read issues
  + CVE-2014-9913 buffer overflow in zipinfo
  + CVE-2014-9636 out-of-bounds read or write and crash
  + CVE-2015-7696 fix for heap overflow
  + CVE-2015-7697 fix infinite loop when extracting empty bzip2 data
  + CVE-2016-9844 buffer overflow in zipinfo in similar way like fix for CVE-2014-9913
  + CVE-2018-1000035 heap based buffer overflow when opening password protected files
  + CVE-2018-18384 buffer overflow, when a ZIP archive specially crafted
libass Nov 10, 2020, 06:40 PMNov 10, 2020, 06:40 PM
Version: 0.15.0-alt1
Summary: Portable library for SSA/ASS subtitles rendering
Changelog:
- Updated to upstream version 0.15.0 (Fixes: CVE-2020-26682).
puppetdb Nov 6, 2020, 02:58 PMNov 6, 2020, 02:58 PM
Version: 6.13.0-alt1
Summary: Centralized Puppet Storage
Changelog:
- Updated to upstream version 6.13.0 (Fixes: CVE-2020-7943).
aview Nov 5, 2020, 12:41 PMNov 5, 2020, 12:41 PM
Version: 1.3.0-alt3.rc1
Summary: High quality ascii-art image (pnm) browser and animation (fli/flc) player
Changelog:
- Switched to CVE-2008-4935 fix from Debian.
- Added -Werror=implicit-function-declaration compiler flag.
mimetex Nov 5, 2020, 11:33 AMNov 5, 2020, 11:33 AM
Version: 1.76-alt1
Summary: Mimetex ets you easily embed LaTeX math in your html pages
Changelog:
- Updated to version 1.76 from Debian (Fixes: CVE-2009-1382, CVE-2009-2459).
libsdp Nov 3, 2020, 03:36 PMNov 3, 2020, 03:36 PM
Version: 1.1.108-alt1.0.17.ga6958ef
Summary: LD_PRELOAD-able library for using SDP
Changelog:
- Updated to upstream version 1.1.108-0.17.ga6958ef (Fixes: CVE-2010-4173).
unace Nov 2, 2020, 05:47 PMNov 2, 2020, 05:47 PM
Version: 1.2b-alt5
Summary: ACE unarchiver
Changelog:
- Cleaned up sources by importing sources from Debian.
- Forced using system build flags.
- Updated fix for CVE-2015-2063.
libtar Oct 30, 2020, 01:04 PMOct 30, 2020, 01:04 PM
Version: 1.2.20-alt2.git.6d0ab4c
Summary: C library for manipulating POSIX tar files
Changelog:
- Applied patches from Debian (Fixes: CVE-2013-4420).
Back to Top