Security

antiword Oct 29, 2020, 06:33 PMOct 29, 2020, 06:33 PM
Version: 0.37-alt4
Summary: Antiword an application to display Microsoft(R) Word files
Changelog:
- Applied patches from Debian (Fixes: CVE-2014-8123).
nbd Oct 29, 2020, 04:51 PMOct 29, 2020, 04:51 PM
Version: 3.20-alt1
Summary: Network Block Device user space tools
Changelog:
- Updated to upstream version 3.20 (Fixes: CVE-2013-6410, CVE-2013-7441, CVE-2015-0847).
fuseiso Oct 29, 2020, 12:47 PMOct 29, 2020, 12:47 PM
Version: 20070708-alt3
Summary: Mount ISO filesystem images as a non-root user
Changelog:
- Applied patches from Gentoo (Fixes: CVE-2015-8836, CVE-2015-8837).
gifsicle Oct 28, 2020, 05:55 PMOct 28, 2020, 05:55 PM
Version: 1.92-alt1
Summary: command-line program for manipulating GIF images
Changelog:
- Updated to upstream version 1.92 (Fixes: CVE-2017-1000421).
bchunk Oct 28, 2020, 05:23 PMOct 28, 2020, 05:23 PM
Version: 1.2.2-alt1
Summary: A CD image format converter from .bin/.cue to .iso/.cdr/.wav
Changelog:
- Updated to upstream version 1.2.2 (Fixes: CVE-2017-15953, CVE-2017-15954, CVE-2017-15955).
mpg321 Oct 27, 2020, 03:43 PMOct 27, 2020, 03:43 PM
Version: 0.3.2-alt2
Summary: A Free command-line mp3 player, compatible with mpg123
Changelog:
- Applied patches from Gentoo (Fixes: CVE-2019-14247).
snmptt Oct 27, 2020, 12:48 PMOct 27, 2020, 12:48 PM
Version: 1.4.2-alt1
Summary: An SNMP trap handler written in Perl
Changelog:
- Updated to upstream version 1.4.2 (Fixes: CVE-2020-24361).
inspircd Oct 26, 2020, 05:14 PMOct 26, 2020, 05:14 PM
Version: 2.0.29-alt1
Summary: InspIRCd is a modular Internet Relay Chat (IRC) server
Changelog:
- Updated to upstream version 2.0.29 (Fixes: CVE-2019-20917, CVE-2020-25269).
hostapd Oct 23, 2020, 05:19 PMOct 23, 2020, 05:19 PM
Version: 2.9-alt2
Summary: User space daemon for extended IEEE 802.11 management
Changelog:
- AP: Silently ignore management frame from unexpected source address
  (Fixes: CVE-2019-16275) (Closes: 39131)
xli Oct 22, 2020, 03:07 PMOct 22, 2020, 03:07 PM
Version: 1.17.0-alt9
Summary: X11 Image Loading Utility
Changelog:
- Applied patches from Debian (Fixes: CVE-2005-3178).
pstotext Oct 22, 2020, 10:43 AMOct 22, 2020, 10:43 AM
Version: 1.9-alt3
Summary: PostScript to text converter
Changelog:
- Applied patches from Debian and Gentoo (Fixes: CVE-2005-2536, CVE-2006-5869).
- Build now respects %optflags.
t1lib Oct 21, 2020, 02:39 PMOct 21, 2020, 02:39 PM
Version: 5.1.2-alt6
Summary: Type 1 font rasterizer
Changelog:
- Applied security fixes from Gentoo (Fixes: CVE-2010-2642, CVE-2011-0433,
  CVE-2011-0764, CVE-2011-1552, CVE-2011-1553, CVE-2011-1554, CVE-2011-5244).
freecol Oct 19, 2020, 03:38 PMOct 19, 2020, 03:38 PM
Version: 0.11.6-alt2
Summary: FreeCol is opensource Colonization clone.
Changelog:
- Applied security fix from Debian (Fixes: CVE-2018-1000825).
- Updated license tag.
proftpd Oct 8, 2020, 01:09 PMOct 8, 2020, 01:09 PM
Version: 1.3.6-alt0.4.ga73dbfe3b
Summary: ProFTPd -- Professional FTP Server
Changelog:
- Applied security fixes from upstream (Fixes: CVE-2020-9272, CVE-2020-9273).
- Built with system libcap.
libssh2 Oct 2, 2020, 12:41 PMOct 2, 2020, 12:41 PM
Version: 1.9.0-alt2
Summary: A library implementing the SSH2 protocol
Changelog:
- Applied security fixes from upstream (Fixes: CVE-2019-17498).
upx Oct 1, 2020, 05:32 PMOct 1, 2020, 05:32 PM
Version: 3.96-alt1
Summary: The Ultimate Packer for eXecutables
Changelog:
- Updated to upstream version 3.96 (Fixes: CVE-2019-20805).
libetpan Oct 1, 2020, 04:34 PMOct 1, 2020, 04:34 PM
Version: 1.9.4-alt2
Summary: This mail library provide a portable, efficient middleware for different kinds of mail access
Changelog:
- Applied security fixes from upstream (Fixes: CVE-2020-15953).
libnghttp2 Jun 20, 2020, 11:33 AMJun 20, 2020, 11:33 AM
Version: 1.41.0-alt1
Summary: HTTP/2.0 C Library
Changelog:
- 1.40.1 (Closes: #38626)
- Security fix: CVE-2020-11080
gst-plugins0.10-base Apr 20, 2020, 12:10 PMApr 20, 2020, 12:10 PM
Version: 0.10.36-alt3
Summary: An essential set of GStreamer plugins (legacy version)
Changelog:
- Apply patches from Debian.
- Fixes:
  + CVE-2017-5837
  + CVE-2017-5844
  + CVE-2019-9928
- Fix build with make 4.3.0 (patch obtained from https://bugs.gentoo.org/show_bug.cgi?id=706076).
- Fix License tag according to SPDX.
itop Apr 9, 2020, 09:55 PMApr 9, 2020, 09:55 PM
Version: 2.6.3-alt1
Summary: IT Operations Portal
Changelog:
- New version 2.6.3
- Security fixes:
+ CVE-2019-19821 : Improper Privilege Management
- Removed Python requirements
libadplug Sep 22, 2019, 05:34 PMSep 22, 2019, 05:34 PM
Version: 2.2.1-alt3
Summary: AdLib sound player library
Changelog:
- added fedora patches:
  + inline (fixes e2k ftbfs)
  + cve-2018-17825 (fixes: CVE-2018-17825)
  + (signed-char unneeded, worked around in previous build)
- NB: there's 2.3.1 release over at guthub
libpng16 Aug 27, 2019, 05:47 PMAug 27, 2019, 05:47 PM
Version: 1.6.37-alt1
Summary: A library of functions for manipulating PNG image format files
Changelog:
- 1.6.37 (fixes: CVE-2018-14048, CVE-2018-14550, CVE-2019-7317)
rzip Aug 22, 2019, 02:30 PMAug 22, 2019, 02:30 PM
Version: 2.1-alt3
Summary: A large-file compression program
Changelog:
- Applied security fix from Gentoo (Fixes: CVE-2017-8364)
kernel-image-tegra Jul 6, 2019, 03:26 PMJul 6, 2019, 03:26 PM
Version: 4.9.140-alt2
Summary: The Linux kernel (the core of the Linux operating system)
Changelog:
- fixed CVE-2019-11478, CVE-2019-11477, CVE-2019-11833, CVE-2019-3882, CVE-2019-3819, CVE-2019-7222, CVE-2019-3701, CVE-2018-19985
ruby-loofah Mar 27, 2019, 04:32 PMMar 27, 2019, 04:32 PM
Version: 2.2.3-alt1
Summary: HTML/XML manipulation and sanitization based on Nokogiri
Changelog:
- 2.2.3 (CVE-2018-16468);
- fix version in gamespec for packaging (closes: #36441).
openslp Dec 1, 2018, 02:47 AMDec 1, 2018, 02:47 AM
Version: 2.0.0-alt2
Summary: OpenSLP implementation of Service Location Protocol V2
Changelog:
- Fixed libslp namespace (closes: #35692).
- Enabled SLPv2 Security.
- Enabled testing.
- Applied security fixes (fixes: CVE-2012-4428, CVE-2016-4912, CVE-2016-7567,
  CVE-2017-17833).
libwmf Sep 27, 2017, 04:16 PMSep 27, 2017, 04:16 PM
Version: 0.2.8.4-alt13
Summary: A library to convert wmf files
Changelog:
- Secutity (Fixes: CVE-2015-0848, CVE-2015-4588, CVE-2015-4695,
  CVE-2015-4696, CVE-2016-9011)
rssh Jul 1, 2016, 01:40 PMJul 1, 2016, 01:40 PM
Version: 2.3.4-alt2
Summary: Restricted shell for scp or sftp
Changelog:
- really update sources to 2.3.4 fixes (CVE-2012-3478 and CVE-2012-2252)
- add patch for rsync3 compat
pxz Jan 27, 2015, 03:47 AMJan 27, 2015, 03:47 AM
Version: 4.999.9beta-alt3
Summary: Parallel LZMA compressor using liblzma
Changelog:
- CVE-2015-1200 fix (patch from debian bug #775306)
kernel-src-kvm May 13, 2014, 02:21 AMMay 13, 2014, 02:21 AM
Version: 3.10.21-alt8
Summary: KVM modules sources for Linux kernel
Changelog:
- updates from linux-3.10.40:
  + KVM: ioapic: fix assignment of ioapic->rtc_status.pending_eoi (CVE-2014-0155)
Back to Top