September 2014 - mingw - Fedora Mailing-Lists

[Bug 1031734] CVE-2013-6629 libjpeg: information leak (read of uninitialized memory)

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=1031734 Bug 1031734 depends on bug 1031741, which changed state. Bug 1031741 Summary: CVE-2013-6630 CVE-2013-6629 mingw32-libjpeg: various flaws [epel-5] https://bugzilla.redhat.com/show_bug.cgi?id=1031741 What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution|--- |WONTFIX -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=XoB6By7wMQ&a=cc_unsubscribe

9 years, 7 months

1
0
0 / 0

[Bug 1031741] New: CVE-2013-6629 mingw32-libjpeg: libjpeg: information leak (read of uninitialized memory) [epel-5]

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=1031741 Bug ID: 1031741 Summary: CVE-2013-6629 mingw32-libjpeg: libjpeg: information leak (read of uninitialized memory) [epel-5] Product: Fedora EPEL Version: el5 Component: mingw32-libjpeg Keywords: Security, SecurityTracking Severity: medium Priority: medium Assignee: rjones(a)redhat.com Reporter: vdanen(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: fedora-mingw(a)lists.fedoraproject.org, lfarkas(a)lfarkas.org, rjones(a)redhat.com Blocks: 1031734 (CVE-2013-6629) This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in affected versions of Fedora EPEL. For comments that are specific to the vulnerability please use bugs filed against the "Security Response" product referenced in the "Blocks" field. For more information see: http://fedoraproject.org/wiki/Security/TrackingBugs When creating a Bodhi update request, please use the bodhi submission link noted in the next comment(s). This will include the bug IDs of this tracking bug as well as the relevant top-level CVE bugs. Please also mention the CVE IDs being fixed in the RPM changelog and the Bodhi notes field when available. epel-5 tracking bug for mingw32-libjpeg: see blocks bug list for full details of the security issue(s). [bug automatically created by: add-tracking-bugs] Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=1031734 [Bug 1031734] CVE-2013-6629 libjpeg: information leak (read of uninitialized memory) -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=ePkXw0rUxC&a=cc_unsubscribe

9 years, 7 months

1
6
0 / 0

[Bug 835863] CVE-2012-2807 libxml2 (64-bit): Multiple integer overflows, leading to DoS or possibly other unspecified impact

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=835863 Bug 835863 depends on bug 858914, which changed state. Bug 858914 Summary: CVE-2011-3102 CVE-2012-2807 mingw32-libxml2 various flaws [epel-5] https://bugzilla.redhat.com/show_bug.cgi?id=858914 What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution|--- |WONTFIX -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=l7xbKfROwb&a=cc_unsubscribe

9 years, 7 months

1
0
0 / 0

[Bug 858914] New: CVE-2011-3102 libxml: An off-by-one out-of-bounds write by XPointer part evaluation [epel-5]

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=858914 Bug ID: 858914 Keywords: Security, SecurityTracking Blocks: 822109 (CVE-2011-3102) QA Contact: extras-qa(a)fedoraproject.org Severity: low Version: el5 Priority: low CC: fedora-mingw(a)lists.fedoraproject.org, lfarkas(a)lfarkas.org, rjones(a)redhat.com, veillard(a)redhat.com Assignee: rjones(a)redhat.com Summary: CVE-2011-3102 libxml: An off-by-one out-of-bounds write by XPointer part evaluation [epel-5] Regression: --- Story Points: --- Classification: Fedora OS: Linux Reporter: huzaifas(a)redhat.com Type: --- Documentation: --- Hardware: All Mount Type: --- Status: NEW Component: mingw32-libxml2 Product: Fedora EPEL This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in affected Fedora versions. For comments that are specific to the vulnerability please use bugs filed against "Security Response" product referenced in the "Blocks" field. For more information see: http://fedoraproject.org/wiki/Security/TrackingBugs When creating a Bodhi update request, please include this bug ID and the bug IDs of this bug's parent bugs filed against the "Security Response" product (the top-level CVE bugs). Please mention the CVE IDs being fixed in the RPM changelog when available. Bodhi update submission link: https://admin.fedoraproject.org/updates/new/?type_=security&bugs=822109 epel-5 tracking bug for mingw32-libxml2: see blocks bug list for full details of the security issue(s). [bug automatically created by: add-tracking-bugs] -- You are receiving this mail because: You are on the CC list for the bug.

9 years, 7 months

1
5
0 / 0

[Bug 787067] CVE-2012-0841 libxml2: hash table collisions CPU usage DoS

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=787067 Bug 787067 depends on bug 795700, which changed state. Bug 795700 Summary: CVE-2012-0841 libxml2: hash table collisions CPU usage DoS [epel-5] https://bugzilla.redhat.com/show_bug.cgi?id=795700 What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution|--- |WONTFIX -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=eFFO9Q2mON&a=cc_unsubscribe

9 years, 7 months

1
0
0 / 0

[Bug 795700] New: CVE-2012-0841 libxml2: hash table collisions CPU usage DoS [epel-5]

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. Summary: CVE-2012-0841 libxml2: hash table collisions CPU usage DoS [epel-5] https://bugzilla.redhat.com/show_bug.cgi?id=795700 Summary: CVE-2012-0841 libxml2: hash table collisions CPU usage DoS [epel-5] Product: Fedora EPEL Version: el5 Platform: All OS/Version: Linux Status: NEW Keywords: Security, SecurityTracking Severity: medium Priority: medium Component: mingw32-libxml2 AssignedTo: rjones(a)redhat.com ReportedBy: huzaifas(a)redhat.com QAContact: extras-qa(a)fedoraproject.org CC: lfarkas(a)lfarkas.org, veillard(a)redhat.com, rjones(a)redhat.com, fedora-mingw(a)lists.fedoraproject.org Blocks: 787067 Classification: Fedora Story Points: --- Type: --- Regression: --- Mount Type: --- Documentation: --- This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in affected Fedora versions. For comments that are specific to the vulnerability please use bugs filed against "Security Response" product referenced in the "Blocks" field. For more information see: http://fedoraproject.org/wiki/Security/TrackingBugs When creating a Bodhi update request, please include this bug ID and the bug IDs of this bug's parent bugs filed against the "Security Response" product (the top-level CVE bugs). Please mention the CVE IDs being fixed in the RPM changelog when available. Bodhi update submission link: https://admin.fedoraproject.org/updates/new/?type_=security&bugs=787067 epel-5 tracking bug for mingw32-libxml2: see blocks bug list for full details of the security issue(s). [bug automatically created by: add-tracking-bugs] -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

9 years, 7 months

1
2
0 / 0

[Bug 721312] New: CVE-2011-2690 libpng: buffer overwrite in png_rgb_to_gray [epel-5]

by Red Hat Bugzilla

Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. Summary: CVE-2011-2690 libpng: buffer overwrite in png_rgb_to_gray [epel-5] https://bugzilla.redhat.com/show_bug.cgi?id=721312 Summary: CVE-2011-2690 libpng: buffer overwrite in png_rgb_to_gray [epel-5] Product: Fedora EPEL Version: el5 Platform: All OS/Version: Linux Status: NEW Keywords: Security, SecurityTracking Severity: medium Priority: medium Component: mingw32-libpng AssignedTo: rjones(a)redhat.com ReportedBy: huzaifas(a)redhat.com QAContact: extras-qa(a)fedoraproject.org CC: lfarkas(a)lfarkas.org, rjones(a)redhat.com, fedora-mingw(a)lists.fedoraproject.org Blocks: 720607 Classification: Fedora Story Points: --- epel-5 tracking bug for mingw32-libpng: see blocks bug list for full details of the security issue(s). This bug is never intended to be made public, please put any public notes in the 'blocks' bugs. [bug automatically created by: add-tracking-bugs] -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

9 years, 7 months

1
4
0 / 0

[Bug 1037975] CVE-2013-6425 pixman: integer underflow when handling trapezoids

by Red Hat Bugzilla

9 years, 7 months

1
0
0 / 0

Version Discrepancy Report

by Michael Cronenworth

------------------------------------------ MinGW/native package version discrepancies ------------------------------------------ Fedora N Matches Found: 52 Fedora Rawhide Matches Found: 56 +---------------------------------------------+ | f21 | rawhide | owner | +-------------------------------+---------------+---------------+-------------+ | atk | 2.13.90 | 2.13.90 | | | mingw-atk | 2.12.0 | 2.12.0 | rjones | +-------------------------------+---------------+---------------+-------------+ | cairo | 1.13.1 | 1.13.1 | | | mingw-cairo | 1.12.16 | 1.12.16 | rjones | +-------------------------------+---------------+---------------+-------------+ | curl | | 7.37.1 | | | mingw-curl | | 7.37.0 | epienbro | +-------------------------------+---------------+---------------+-------------+ | cxxtest | 4.3 | 4.3 | | | mingw-cxxtest | 3.10.1 | 3.10.1 | astokes | +-------------------------------+---------------+---------------+-------------+ | dbus | 1.8.6 | 1.8.6 | | | mingw-dbus | 1.6.12 | 1.6.12 | ivanromanov | +-------------------------------+---------------+---------------+-------------+ | dbus-glib | 0.100.2 | 0.100.2 | | | mingw-dbus-glib | 0.102 | 0.102 | greghellings | +-------------------------------+---------------+---------------+-------------+ | freeimage | 3.10.0 | 3.10.0 | | | mingw-freeimage | 3.15.4 | 3.15.4 | smani | +-------------------------------+---------------+---------------+-------------+ | gdb | 7.8 | 7.8 | | | mingw-gdb | 7.7 | 7.7 | kalev | +-------------------------------+---------------+---------------+-------------+ | gdbm | 1.11 | 1.11 | | | mingw-gdbm | 1.10 | 1.10 | rjones | +-------------------------------+---------------+---------------+-------------+ | gettext | 0.19.2 | 0.19.2 | | | mingw-gettext | 0.18.3.2 | 0.18.3.2 | rjones | +-------------------------------+---------------+---------------+-------------+ | giflib | 4.1.6 | 4.1.6 | | | mingw-giflib | 5.0.5 | 5.0.5 | smani | +-------------------------------+---------------+---------------+-------------+ | glib-networking | 2.41.4 | 2.41.4 | | | mingw-glib-networking | 2.38.2 | 2.38.2 | kalev | +-------------------------------+---------------+---------------+-------------+ | glib2 | 2.41.3 | 2.41.3 | | | mingw-glib2 | 2.41.2 | 2.41.2 | rjones | +-------------------------------+---------------+---------------+-------------+ | glibmm24 | 2.41.3 | 2.41.3 | | | mingw-glibmm24 | 2.41.1 | 2.41.1 | sailer | +-------------------------------+---------------+---------------+-------------+ | goocanvas2 | 2.0.2 | 2.0.2 | | | mingw-goocanvas2 | 2.0.1 | 2.0.1 | kalev | +-------------------------------+---------------+---------------+-------------+ | gstreamer1 | 1.4.1 | 1.4.1 | | | mingw-gstreamer1 | 1.3.2 | 1.3.2 | pfor | +-------------------------------+---------------+---------------+-------------+ | gstreamer1-plugins-base | 1.4.1 | 1.4.1 | | | mingw-gstreamer1-plugins-base | 1.3.2 | 1.3.2 | pfor | +-------------------------------+---------------+---------------+-------------+ | gtk3 | 3.13.7 | 3.13.7 | | | mingw-gtk3 | 3.13.2 | 3.13.2 | kalev | +-------------------------------+---------------+---------------+-------------+ | gtkhtml3 | 4.8.4 | 4.8.4 | | | mingw-gtkhtml3 | 4.6.6 | 4.6.6 | epienbro | +-------------------------------+---------------+---------------+-------------+ | gtkmm30 | 3.13.7 | 3.13.7 | | | mingw-gtkmm30 | 3.12.0 | 3.12.0 | kalev | +-------------------------------+---------------+---------------+-------------+ | gtksourceview3 | 3.13.90 | 3.13.90 | | | mingw-gtksourceview3 | 3.12.2 | 3.12.2 | kalev | +-------------------------------+---------------+---------------+-------------+ | harfbuzz | 0.9.34 | 0.9.35 | | | mingw-harfbuzz | 0.9.28 | 0.9.28 | epienbro | +-------------------------------+---------------+---------------+-------------+ | hunspell | 1.3.3 | 1.3.3 | | | mingw-hunspell | 1.3.2 | 1.3.2 | epienbro | +-------------------------------+---------------+---------------+-------------+ | icu | 52.1 | 53.1 | | | mingw-icu | 50.1.2 | 50.1.2 | pfor | +-------------------------------+---------------+---------------+-------------+ | libffi | 3.1 | 3.1 | | | mingw-libffi | 3.0.13 | 3.0.13 | bonzini | +-------------------------------+---------------+---------------+-------------+ | libgpg-error | 1.13 | 1.13 | | | mingw-libgpg-error | 1.12 | 1.12 | rjones | +-------------------------------+---------------+---------------+-------------+ | libgsf | 1.14.29 | 1.14.29 | | | mingw-libgsf | 1.14.30 | 1.14.30 | greghellings | +-------------------------------+---------------+---------------+-------------+ | libidn | | 1.29 | | | mingw-libidn | | 1.28 | epienbro | +-------------------------------+---------------+---------------+-------------+ | libogg | | 1.3.2 | | | mingw-libogg | | 1.3.0 | kraxel | +-------------------------------+---------------+---------------+-------------+ | libosinfo | 0.2.11 | 0.2.11 | | | mingw-libosinfo | 0.2.8 | 0.2.8 | berrange | +-------------------------------+---------------+---------------+-------------+ | libpng | | 1.6.12 | | | mingw-libpng | | 1.6.10 | rjones | +-------------------------------+---------------+---------------+-------------+ | libsigc++20 | 2.3.2 | 2.3.2 | | | mingw-libsigc++20 | 2.3.1 | 2.3.1 | sailer | +-------------------------------+---------------+---------------+-------------+ | libsigsegv | 2.10 | 2.10 | | | mingw-libsigsegv | 2.6 | 2.6 | bonzini | +-------------------------------+---------------+---------------+-------------+ | libsoup | 2.47.4 | 2.47.4 | | | mingw-libsoup | 2.46.0 | 2.46.0 | epienbro | +-------------------------------+---------------+---------------+-------------+ | libtasn1 | 4.1 | 4.1 | | | mingw-libtasn1 | 4.0 | 4.0 | kalev | +-------------------------------+---------------+---------------+-------------+ | libusbx | 1.0.19 | 1.0.19 | | | mingw-libusbx | 1.0.15 | 1.0.15 | elmarco | +-------------------------------+---------------+---------------+-------------+ | libvirt | 1.2.7 | 1.2.7 | | | mingw-libvirt | 1.2.0 | 1.2.0 | berrange | +-------------------------------+---------------+---------------+-------------+ | libvirt-glib | 0.1.9 | 0.1.9 | | | mingw-libvirt-glib | 0.1.8 | 0.1.8 | berrange | +-------------------------------+---------------+---------------+-------------+ | libwebp | 0.4.1 | 0.4.1 | | | mingw-libwebp | 0.4.0 | 0.4.0 | pfor | +-------------------------------+---------------+---------------+-------------+ | llvm | 3.4 | 3.4 | | | mingw-llvm | 3.0 | 3.0 | brouhaha | +-------------------------------+---------------+---------------+-------------+ | openjpeg | 1.5.1 | 1.5.1 | | | mingw-openjpeg | 1.5.2 | 1.5.2 | smani | +-------------------------------+---------------+---------------+-------------+ | orc | 0.4.18 | 0.4.22 | | | mingw-orc | 0.4.16 | 0.4.16 | elmarco | +-------------------------------+---------------+---------------+-------------+ | pango | 1.36.6 | 1.36.6 | | | mingw-pango | 1.36.5 | 1.36.5 | rjones | +-------------------------------+---------------+---------------+-------------+ | pcre | 8.35 | 8.35 | | | mingw-pcre | 8.34 | 8.34 | astokes | +-------------------------------+---------------+---------------+-------------+ | pixman | 0.32.6 | 0.32.6 | | | mingw-pixman | 0.32.0 | 0.32.0 | rjones | +-------------------------------+---------------+---------------+-------------+ | qpid-cpp | 0.28 | 0.28 | | | mingw-qpid-cpp | 0.14 | 0.14 | beekhof | +-------------------------------+---------------+---------------+-------------+ | readline | 6.3 | 6.3 | | | mingw-readline | 6.2 | 6.2 | rjones | +-------------------------------+---------------+---------------+-------------+ | shapelib | 1.3.0f | 1.3.0f | | | mingw-shapelib | 1.3.0 | 1.3.0 | smani | +-------------------------------+---------------+---------------+-------------+ | spice-gtk | 0.25 | 0.25 | | | mingw-spice-gtk | 0.23 | 0.23 | elmarco | +-------------------------------+---------------+---------------+-------------+ | spice-protocol | 0.12.7 | 0.12.7 | | | mingw-spice-protocol | 0.12.4 | 0.12.4 | kraxel | +-------------------------------+---------------+---------------+-------------+ | sqlite | 3.8.6 | 3.8.6 | | | mingw-sqlite | 3.8.4.3 | 3.8.4.3 | rjones | +-------------------------------+---------------+---------------+-------------+ | tcl | 8.6.2 | 8.6.2 | | | mingw-tcl | 8.6.1 | 8.6.1 | sailer | +-------------------------------+---------------+---------------+-------------+ | tk | 8.6.2 | 8.6.2 | | | mingw-tk | 8.6.1 | 8.6.1 | roma | +-------------------------------+---------------+---------------+-------------+ | usbredir | 0.7 | 0.7 | | | mingw-usbredir | 0.6 | 0.6 | elmarco | +-------------------------------+---------------+---------------+-------------+ | webkitgtk | 2.4.5 | 2.4.5 | | | mingw-webkitgtk | 2.2.7 | 2.2.7 | epienbro | +-------------------------------+---------------+---------------+-------------+ | webkitgtk3 | 2.4.5 | 2.4.5 | | | mingw-webkitgtk3 | 2.2.7 | 2.2.7 | kalev | +-------------------------------+---------------+---------------+-------------+

9 years, 7 months

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

mingw September 2014