The following Fedora EPEL 4 Security updates need testing:
https://admin.fedoraproject.org/updates/fontforge-20061025-3.el4
https://admin.fedoraproject.org/updates/phpMyAdmin-2.11.11.1-1.el4
The following builds have been pushed to Fedora EPEL 4 updates-testing
fontforge-20061025-3.el4
Details about builds:
================================================================================
fontforge-20061025-3.el4 (FEDORA-EPEL-2010-3752)
Outline and bitmap font editor
--------------------------------------------------------------------------------
Update Information:
fix for CVE-2010-4259. See bug for proof of concept to test.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 4 2010 Kevin Fenzi <kevin(a)tummy.com> - 20061025-3
- Add patch to fix CVE-2010-4259 (fixes #659359)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #659359 - CVE-2010-4259 FontForge: Stack-based buffer overflow by processing
specially-crafted CHARSET_REGISTRY font file header
https://bugzilla.redhat.com/show_bug.cgi?id=659359
--------------------------------------------------------------------------------