The following Fedora EPEL 5 Security updates need testing:
https://admin.fedoraproject.org/updates/fontforge-20061025-3.el5 https://admin.fedoraproject.org/updates/phpMyAdmin-2.11.11.1-1.el5 https://admin.fedoraproject.org/updates/wordpress-mu-2.9.2-1.el5
The following builds have been pushed to Fedora EPEL 5 updates-testing
fontforge-20061025-3.el5
Details about builds:
================================================================================ fontforge-20061025-3.el5 (FEDORA-EPEL-2010-3753) Outline and bitmap font editor -------------------------------------------------------------------------------- Update Information:
Fix for CVE-2010-4259. See bug for proof of concept to test. -------------------------------------------------------------------------------- ChangeLog:
* Sat Dec 4 2010 Kevin Fenzi kevin@tummy.com - 20061025-3 - Add patch to fix CVE-2010-4259 (fixes #659359) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #659359 - CVE-2010-4259 FontForge: Stack-based buffer overflow by processing specially-crafted CHARSET_REGISTRY font file header https://bugzilla.redhat.com/show_bug.cgi?id=659359 --------------------------------------------------------------------------------
epel-devel@lists.fedoraproject.org