4:51:00 pm
rudra
This stable update adds a few important corrections to the following packages:
| Package | Reason |
|---|---|
| alien-arena | Fix a buffer overflow and a denial of service |
| apache2 | Add missing psmisc dependency; fix memory leak in brigade cleanup |
| apache2-mpm-itk | Ensure child processes get correctly reaped on reload |
| apr | Set FD_CLOEXEC on file descriptors to avoid potential leaks |
| apt | Allow Files sections to contain more than 999 characters |
| base-files | Update /etc/debian_version for the point release |
| cpio | Fix buffer overflow in rmt_read__ |
| dia2code | Fix segfault parsing large files |
| gtk+2.0 | Fix hang when printing large documents |
| libapache-dbi-perl | Fix loading of module from Apache startup files |
| libapache2-mod-perl2 | Fix XSS in Apache2::Status |
| libjavascript-perl | Fix segfault when calling non-existent function |
| libjson-ruby | Fix parser DoS and use libjs-prototype rather than embedding the library |
| liblog-handler-perl | Add missing dependency on libuniversal-require-perl |
| libmediawiki-perl | Update to match mediawiki changes |
| libnamespace-clean-perl | Add missing dependency on libscope-guard-perl |
| libnet-smtp-server-perl | Add missing dependency on libnet-dns-perl |
| libxext | Ensure display lock is held before calling XAllocID |
| linux-2.6 | Several fixes and driver updates |
| mailman | Don't add multiple Mime-Version headers |
| mpg123 | Allow modules to be located again (broken by libltdl security fix) |
| nano | Fix symlink attack and arbitrary file ownership change issue |
| nfs-utils | Update test for NFS kernel server support in init script to support partial upgrades |
| nut | Move library to /lib to allow power-down with separated /usr |
| open-iscsi | Fix temporary file vulnerability |
| openssl | Check return value of bn_wexpand() (CVE-2009-3245) |
| openttd | Fix several DoS and crash vulnerabilities |
| php5 | Fix overflows, add missing sybase aliases, improve e-mail validation |
| poppler | Fix remote code execution via crafted PDF files |
| postgresql-8.3 | Several vulnerabilities |
| pyftpd | Security fixes - disable default users, anonymous access and logging to /tmp |
| python-support | Use sane default umask in update-python-modules |
| request-tracker3.6 | Fix login problem introduced in security update |
| samba | Fix memory leaks with domain trust passwords; fix interdomain trust with Windows 2008 r2 servers |
| slim | Make magic cookie less predictable; don't save screenshots in /tmp |
| sun-java5 | Update to new upstream release to fix security issues |
| sun-java6 | Update to new upstream release to fix security issues |
| tar | Security fix in rmt |
| texlive-bin | Security fixes in dvips |
| tla | Fix DoS in embedded expat library |
| tzdata | Update timezone data |
| usbutils | Update USB ID list |
| user-mode-linux | Rebuild against linux-2.6 2.6.26-24 |
| wordpress | Fix DoS |
| xerces-c2 | Fix DoS attack with nested DTDs |
| xmonad-contrib | Fix installability on 64-bit architectures |
| xserver-xorg-input-elographics | Prevent X server hangs when using the touchscreen |
| xserver-xorg-video-intel | Add support for ASUS eeetop LVDS output |
Posted in: Linux
0 comments:
Post a Comment