Fedora Core 4 Update: fetchmail-6.2.5.4-1.fc4
by Miloslav Trmač
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2005-1108
2005-12-12
---------------------------------------------------------------------
Product : Fedora Core 4
Name : fetchmail
Version : 6.2.5.4
Release : 1.fc4
Summary : A remote mail retrieval and forwarding utility.
Description :
Fetchmail is a remote mail retrieval and forwarding utility intended
for use over on-demand TCP/IP links, like SLIP or PPP connections.
Fetchmail supports every remote-mail protocol currently in use on the
Internet (POP2, POP3, RPOP, APOP, KPOP, all IMAPs, ESMTP ETRN, IPv6,
and IPSEC) for retrieval. Then Fetchmail forwards the mail through
SMTP so you can read it through your favorite mail client.
Install fetchmail if you need to retrieve mail over SLIP or PPP
connections.
---------------------------------------------------------------------
Update Information:
Upstream maintenance release:
* Critical fix: fix IMAP timeouts, counting message count
down on servers that do not send EXISTS counts after EXPUNGE.
Debian Bug#314509.
---------------------------------------------------------------------
* Wed Nov 30 2005 Miloslav Trmac <mitr(a)redhat.com> - 6.2.5.4-1.fc4
- Update to fetchmail-6.2.5.4
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/
4520c8fefd6922bc0de4a6b1a6a8cb9d SRPMS/fetchmail-6.2.5.4-1.fc4.src.rpm
1b6421c3106c02f7d0e1f49d1d629d74 ppc/fetchmail-6.2.5.4-1.fc4.ppc.rpm
e2700e4f098c8d9524ca4dd54478eb0f ppc/debug/fetchmail-debuginfo-6.2.5.4-1.fc4.ppc.rpm
8264be00c8434926b9f273527a239357 x86_64/fetchmail-6.2.5.4-1.fc4.x86_64.rpm
86adbb0367e77668a8e463e95f85b243 x86_64/debug/fetchmail-debuginfo-6.2.5.4-1.fc4.x86_64.rpm
012bfeed9cb37afa05b7a6b4cf219bca i386/fetchmail-6.2.5.4-1.fc4.i386.rpm
ff7c15fcc6fce5119b8be614aecd426a i386/debug/fetchmail-debuginfo-6.2.5.4-1.fc4.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
18 years, 4 months
Fedora Core 3 Update: fetchmail-6.2.5.4-1.fc3
by Miloslav Trmač
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2005-1107
2005-12-12
---------------------------------------------------------------------
Product : Fedora Core 3
Name : fetchmail
Version : 6.2.5.4
Release : 1.fc3
Summary : A remote mail retrieval and forwarding utility.
Description :
Fetchmail is a remote mail retrieval and forwarding utility intended
for use over on-demand TCP/IP links, like SLIP or PPP connections.
Fetchmail supports every remote-mail protocol currently in use on the
Internet (POP2, POP3, RPOP, APOP, KPOP, all IMAPs, ESMTP ETRN, IPv6,
and IPSEC) for retrieval. Then Fetchmail forwards the mail through
SMTP so you can read it through your favorite mail client.
Install fetchmail if you need to retrieve mail over SLIP or PPP
connections.
---------------------------------------------------------------------
Update Information:
Upstream maintenance release:
* Critical fix: fix IMAP timeouts, counting message count
down on servers that do not send EXISTS counts after EXPUNGE.
Debian Bug#314509.
---------------------------------------------------------------------
* Wed Nov 30 2005 Miloslav Trmac <mitr(a)redhat.com> - 6.2.5.4-1.fc3
- Update to fetchmail-6.2.5.4
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/
15c5e8deca832d2e455d8c05346743a0 SRPMS/fetchmail-6.2.5.4-1.fc3.src.rpm
f295ce11fca677b9b6461acb1d1548d6 x86_64/fetchmail-6.2.5.4-1.fc3.x86_64.rpm
1ee0591b60bb8adf949e16346560c477 x86_64/debug/fetchmail-debuginfo-6.2.5.4-1.fc3.x86_64.rpm
cebbc5d4cfb285cca4474ffd777ae433 i386/fetchmail-6.2.5.4-1.fc3.i386.rpm
da7b3f5448d038af1ed396f41bcc9687 i386/debug/fetchmail-debuginfo-6.2.5.4-1.fc3.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
18 years, 4 months
[SECURITY] Fedora Core 3 Update: libc-client-2002e-13
by Nalin Dahyabhai
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2005-1112
2005-12-08
---------------------------------------------------------------------
Product : Fedora Core 3
Name : libc-client
Version : 2002e
Release : 13
Summary : C-client mail access routines for IMAP and POP protocols
Description :
C-client is a common API for accessing mailboxes. It is used internally by
the popular PINE mail reader, the University of Washington's IMAP server
and PHP.
---------------------------------------------------------------------
Update Information:
The c-client library provides an API which allows
applications to access and manipulate remote mail boxes.
The library contains a bug in its mail_valid_net_parse()
function. If an application allows untrusted input to be
supplied to this function, its stack may become corrupted.
This update backports the fix from imap-2004g which resolves
this issue.
---------------------------------------------------------------------
* Wed Nov 23 2005 Nalin Dahyabhai <nalin(a)redhat.com> 2002e-13
- apply fix for CVE-2005-2933: buffer overflow (#171345)
* Wed Nov 9 2005 Tomas Mraz <tmraz(a)redhat.com> 2002e-12
- rebuilt against new openssl
* Sat Oct 15 2005 Florian La Roche <laroche(a)redhat.com>
- fix to rebuild at least, seems the way to specify the
include dir is a bit broken
* Wed Mar 2 2005 Joe Orton <jorton(a)redhat.com> 2002e-10
- rebuild
* Wed Mar 2 2005 Jindrich Novy <jnovy(a)redhat.com> 2002e-9
- rebuilt
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/
2701b151823333732d18968f5aaa4427 SRPMS/libc-client-2002e-13.src.rpm
1eff60252308fd6098f38c6b53012070 x86_64/libc-client-2002e-13.x86_64.rpm
3db455a4372570e1c2ae720eb83a6daf x86_64/libc-client-devel-2002e-13.x86_64.rpm
d95200d605b34293745146982709360a x86_64/debug/libc-client-debuginfo-2002e-13.x86_64.rpm
f047e8de3baa36327bc2212bc4fe54e9 x86_64/libc-client-2002e-13.i386.rpm
f047e8de3baa36327bc2212bc4fe54e9 i386/libc-client-2002e-13.i386.rpm
1b2df02097ae24cc8553c923effcfab8 i386/libc-client-devel-2002e-13.i386.rpm
98cb42f9d8d4ba23f1b35f7b1d24dd7b i386/debug/libc-client-debuginfo-2002e-13.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
18 years, 5 months
[SECURITY] Fedora Core 4 Update: libc-client-2002e-17
by Nalin Dahyabhai
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2005-1115
2005-12-08
---------------------------------------------------------------------
Product : Fedora Core 4
Name : libc-client
Version : 2002e
Release : 17
Summary : C-client mail access routines for IMAP and POP protocols
Description :
C-client is a common API for accessing mailboxes. It is used internally by
the popular PINE mail reader, the University of Washington's IMAP server
and PHP.
---------------------------------------------------------------------
Update Information:
The c-client library provides an API which allows
applications to access and manipulate remote mail boxes.
The library contains a bug in its mail_valid_net_parse()
function. If an application allows untrusted input to be
supplied to this function, its stack may become corrupted.
This update backports the fix from imap-2004g which resolves
this issue.
---------------------------------------------------------------------
* Thu Dec 1 2005 Nalin Dahyabhai <nalin(a)redhat.com> 2002e-17
- account for the /usr/share/ssl -> /etc/pki/tls move in the patch which
sets the locations at compile-time (more of #165967)
* Wed Nov 23 2005 Nalin Dahyabhai <nalin(a)redhat.com> 2002e-16
- rebuild
* Wed Nov 23 2005 Nalin Dahyabhai <nalin(a)redhat.com> 2002e-15
- rebuild
* Wed Nov 23 2005 Nalin Dahyabhai <nalin(a)redhat.com> 2002e-14
- rebuild
* Wed Nov 23 2005 Nalin Dahyabhai <nalin(a)redhat.com> 2002e-13
- apply fix for CVE-2005-2933: buffer overflow (#171345)
* Wed Nov 9 2005 Tomas Mraz <tmraz(a)redhat.com> 2002e-12
- rebuilt against new openssl
* Sat Oct 15 2005 Florian La Roche <laroche(a)redhat.com>
- fix to rebuild at least, seems the way to specify the
include dir is a bit broken
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/
74e71a958021a53edfd632ca92145e8f SRPMS/libc-client-2002e-17.src.rpm
52839d60a1dedda6cec987bbf4590b07 ppc/libc-client-2002e-17.ppc.rpm
7b0f2cbe941bbb3abc4d0f54779ae217 ppc/libc-client-devel-2002e-17.ppc.rpm
c6568ccc39240ec5bcf5613a8ab94aa7 ppc/debug/libc-client-debuginfo-2002e-17.ppc.rpm
8d2660b1ce5d70f750760a1a69950d74 ppc/libc-client-2002e-17.ppc64.rpm
8791383ebfca4a12feecc83235d69352 x86_64/libc-client-2002e-17.x86_64.rpm
2323d4fe60fcf342ac0366aef688e52d x86_64/libc-client-devel-2002e-17.x86_64.rpm
293dddb99622975f39ad268453a27743 x86_64/debug/libc-client-debuginfo-2002e-17.x86_64.rpm
4a344561de695b7f15f979d640046694 x86_64/libc-client-2002e-17.i386.rpm
4a344561de695b7f15f979d640046694 i386/libc-client-2002e-17.i386.rpm
1bf275133ec054b1567fb74db13ffe7d i386/libc-client-devel-2002e-17.i386.rpm
3926fefbe75d22da13e5fdb924056396 i386/debug/libc-client-debuginfo-2002e-17.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
18 years, 5 months
[SECURITY] Fedora Core 4 Update: poppler-0.4.1-1.2
by Kristian Kristensen
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2005-1132
2005-12-08
---------------------------------------------------------------------
Product : Fedora Core 4
Name : poppler
Version : 0.4.1
Release : 1.2
Summary : PDF rendering library
Description :
Poppler, a PDF rendering library, it's a fork of the xpdf PDF
viewer developed by Derek Noonburg of Glyph and Cog, LLC.
---------------------------------------------------------------------
Update Information:
An attacker could construct a carefully crafted PDF file
that could cause Xpdf to crash or possibly execute arbitrary
code when opened.
---------------------------------------------------------------------
* Thu Dec 8 2005 Kristian Høgsberg <krh(a)redhat.com> - 0.4.1-1.2
- Add poppler-0.4.1-CAN-2005-3193.patch to address security issue
(#175113).
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/
f93557229ed4dece70462442b3c50f5d SRPMS/poppler-0.4.1-1.2.src.rpm
3fabe97626a43cd9a22b0c7ba4c23aae ppc/poppler-0.4.1-1.2.ppc.rpm
83c72b7c3012d61505ba308c0c246902 ppc/poppler-devel-0.4.1-1.2.ppc.rpm
c51cedea18bbc38ed4c385f4d5f0f00c ppc/debug/poppler-debuginfo-0.4.1-1.2.ppc.rpm
36f5d03cd88436ba9aa081d10bac160b x86_64/poppler-0.4.1-1.2.x86_64.rpm
07260f88d481ce0cf84cf0847c4c3190 x86_64/poppler-devel-0.4.1-1.2.x86_64.rpm
dc1af9888344a1d533305798d9340116 x86_64/debug/poppler-debuginfo-0.4.1-1.2.x86_64.rpm
90557b8ee1b2ffe3cd01708a0e1c934f i386/poppler-0.4.1-1.2.i386.rpm
6b02cd497a5f4b6ec3d5ee02205ae6ca i386/poppler-devel-0.4.1-1.2.i386.rpm
2fc9ee2ed8bc6f1a54b2bf56c384873d i386/debug/poppler-debuginfo-0.4.1-1.2.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
18 years, 5 months
[SECURITY] Fedora Core 3 Update: curl-7.12.3-5.fc3
by Ivana Varekova
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2005-1130
2005-12-08
---------------------------------------------------------------------
Product : Fedora Core 3
Name : curl
Version : 7.12.3
Release : 5.fc3
Summary : A utility for getting files from remote servers (FTP, HTTP, and others).
Description :
cURL is a tool for getting files from FTP, HTTP, Gopher, Telnet, and
Dict servers, using any of the supported protocols. cURL is designed
to work without user interaction or any kind of interactivity. cURL
offers many useful capabilities, like proxy support, user
authentication, FTP upload, HTTP post, and file transfer resume.
---------------------------------------------------------------------
Update Information:
This package fixes a security buffer overflow bug in URL
authentication code of curl (CVE-2005-4077).
---------------------------------------------------------------------
* Thu Dec 8 2005 Ivana Varekova <varekova(a)redhat.com> 7.12.3-5.fc3
- fix bug 175265 – CVE-2005-4077 SA17907 cURL/libcURL URL
Parsing Off-By-One Vulnerability
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/
d77288accaa52f1a3e1e8962b1bb71bc SRPMS/curl-7.12.3-5.fc3.src.rpm
44947bef582527e53923bdc11019c845 x86_64/curl-7.12.3-5.fc3.x86_64.rpm
be3f7def626bb055d27d3774cd491ab3 x86_64/curl-devel-7.12.3-5.fc3.x86_64.rpm
3cf3db58fcec9f8d884ea622c976e3f8 x86_64/debug/curl-debuginfo-7.12.3-5.fc3.x86_64.rpm
6f8c289bf75596520d0b187a7a4f8c36 x86_64/curl-7.12.3-5.fc3.i386.rpm
6f8c289bf75596520d0b187a7a4f8c36 i386/curl-7.12.3-5.fc3.i386.rpm
64e7511fc130812f80f9998317b63f3d i386/curl-devel-7.12.3-5.fc3.i386.rpm
cb7b31af4f5604b42f975251ae2751dc i386/debug/curl-debuginfo-7.12.3-5.fc3.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
18 years, 5 months
[SECURITY] Fedora Core 4 Update: curl-7.13.1-4.fc4
by Ivana Varekova
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2005-1129
2005-12-08
---------------------------------------------------------------------
Product : Fedora Core 4
Name : curl
Version : 7.13.1
Release : 4.fc4
Summary : A utility for getting files from remote servers (FTP, HTTP, and others).
Description :
cURL is a tool for getting files from FTP, HTTP, Gopher, Telnet, and
Dict servers, using any of the supported protocols. cURL is designed
to work without user interaction or any kind of interactivity. cURL
offers many useful capabilities, like proxy support, user
authentication, FTP upload, HTTP post, and file transfer resume.
---------------------------------------------------------------------
Update Information:
This package fixes a security buffer overflow bug in URL
authentication code of curl (CVE-2005-4077).
---------------------------------------------------------------------
* Thu Dec 8 2005 Ivana Varekova <varekova(a)redhat.com> 7.13.1-4.fc4
- fix bug 175265 - CVE-2005-4077 SA17907 cURL/libcURL
URL Parsing Off-By-One Vulnerability
* Wed Oct 19 2005 Ivana Varekova <varekova(a)redhat.com> 7.13.1-4
- fix bug 170682 - CAN-2005-3185 NTLM buffer overflow
(this change is only in cvs - not build and not create update)
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/
74b3bde858c6abdf1f6173ea3458ebd5 SRPMS/curl-7.13.1-4.fc4.src.rpm
8cea2486a41145f679f874ee2b34a95a ppc/curl-7.13.1-4.fc4.ppc.rpm
f9073446909237a740d65c91e07c0b19 ppc/curl-devel-7.13.1-4.fc4.ppc.rpm
29605be75615315af71cdbd630415c9e ppc/debug/curl-debuginfo-7.13.1-4.fc4.ppc.rpm
c1b306563f458643580eda3dde3c005c ppc/curl-7.13.1-4.fc4.ppc64.rpm
06a2524c2d80370fa476638e4c533eaf x86_64/curl-7.13.1-4.fc4.x86_64.rpm
d79a0c56021eb3c9bb330bf9b5bba02c x86_64/curl-devel-7.13.1-4.fc4.x86_64.rpm
08f9f0fd6d073a56f66256e431b3cdee x86_64/debug/curl-debuginfo-7.13.1-4.fc4.x86_64.rpm
d837fbe6934a6cf6b93400229a8957f5 x86_64/curl-7.13.1-4.fc4.i386.rpm
d837fbe6934a6cf6b93400229a8957f5 i386/curl-7.13.1-4.fc4.i386.rpm
46eeb963c21692012022757a0a2b134d i386/curl-devel-7.13.1-4.fc4.i386.rpm
81f4181f4bf33ebcb4a31946bfd1b26b i386/debug/curl-debuginfo-7.13.1-4.fc4.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
18 years, 5 months
Fedora Core 4 Update: alsa-utils-1.0.10-1.FC4
by Martin Stransky
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2005-1128
2005-12-07
---------------------------------------------------------------------
Product : Fedora Core 4
Name : alsa-utils
Version : 1.0.10
Release : 1.FC4
Summary : Advanced Linux Sound Architecture (ALSA) utilities
Description :
This package contains command line utilities for the Advanced Linux Sound
Architecture (ALSA).
---------------------------------------------------------------------
* Mon Dec 5 2005 Martin Stransky <stransky(a)redhat.com> 1.0.10-1.FC4
- New upstream version
- Added alsaunmute utility from devel branch
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/
a4239d27a400e2e985d6586b5e6df16d SRPMS/alsa-utils-1.0.10-1.FC4.src.rpm
5f5dd3de46f5d7063ecc4995224f22ef ppc/alsa-utils-1.0.10-1.FC4.ppc.rpm
974b06a23e5f65f3d7350cf347e63992 ppc/debug/alsa-utils-debuginfo-1.0.10-1.FC4.ppc.rpm
cc14f4f2663bb73747c7b2a0bef14334 x86_64/alsa-utils-1.0.10-1.FC4.x86_64.rpm
ec23a45b18bd8f7da2825ad64739fb24 x86_64/debug/alsa-utils-debuginfo-1.0.10-1.FC4.x86_64.rpm
c4b873f7967b0ab954d0818c71aefedf i386/alsa-utils-1.0.10-1.FC4.i386.rpm
4d974ff847417a4c9e7dfa7b75236e50 i386/debug/alsa-utils-debuginfo-1.0.10-1.FC4.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
18 years, 5 months
Fedora Core 4 Update: selinux-policy-strict-1.27.1-2.16
by Daniel J Walsh
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2005-1114
2005-12-07
---------------------------------------------------------------------
Product : Fedora Core 4
Name : selinux-policy-strict
Version : 1.27.1
Release : 2.16
Summary : SELinux strict policy configuration
Description :
Security-enhanced Linux is a patch of the Linux® kernel and a number
of utilities with enhanced security functionality designed to add
mandatory access controls to Linux. The Security-enhanced Linux
kernel contains new architectural components originally developed to
improve the security of the Flask operating system. These
architectural components provide general support for the enforcement
of many kinds of mandatory access control policies, including those
based on the concepts of Type Enforcement®, Role-based Access
Control, and Multi-level Security.
This package contains the SELinux example policy configuration along
with the Flask configuration information and the application
configuration files.
---------------------------------------------------------------------
* Thu Dec 1 2005 Dan Walsh <dwalsh(a)redhat.com> 1.27.1-2.16
- Load the correct policy
* Mon Nov 28 2005 Dan Walsh <dwalsh(a)redhat.com> 1.27.1-2.15
- Allow privoxy to write /etc/privoxy/user.action
- allow syslog to log to tty in targeted
- Allow dovecot to read etc_runtime_t
- Fixes for procmail and spam
- Allow zebra to write routing rules
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/
fa2dd7e41dd727fab109bdc4554f0505 SRPMS/selinux-policy-strict-1.27.1-2.16.src.rpm
4e9f221731578d695eac8021a23efcd1 x86_64/selinux-policy-strict-1.27.1-2.16.noarch.rpm
ecd027f3da346c799804dcbe3a7fb7b5 x86_64/selinux-policy-strict-sources-1.27.1-2.16.noarch.rpm
4e9f221731578d695eac8021a23efcd1 i386/selinux-policy-strict-1.27.1-2.16.noarch.rpm
ecd027f3da346c799804dcbe3a7fb7b5 i386/selinux-policy-strict-sources-1.27.1-2.16.noarch.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
18 years, 5 months