Resolved Bugs
1185769 – CVE-2015-0236 libvirt: missing ACL check for the VIR_DOMAIN_XML_SECURE flag in save images and snapshots objects [fedora-all]
1184431 – CVE-2015-0236 libvirt: missing ACL check for the VIR_DOMAIN_XML_SECURE flag in save images and snapshots objects
1176179 – CVE-2014-8136 libvirt: local denial of service in qemu/qemu_driver.c [fedora-all]
1176176 – CVE-2014-8136 libvirt: local denial of service in qemu/qemu_driver.c<br
* Rebased to version 1.1.3.9
* CVE-2015-0236: missing ACL check for the VIR_DOMAIN_XML_SECURE flag in save images and snapshots objects (bz #1185769)
* CVE-2014-8136: local denial of service in qemu/qemu_driver.c (bz #1176179)
Monthly Archives: February 2015
Fedora 20 Security Update: qemu-1.6.2-13.fc20
Fedora 21 Security Update: libvirt-1.2.9.2-1.fc21
Resolved Bugs
1188644 – segfault at 0 ip 00007fed0cb2eb4c sp 00007fecf005fad0 error 4 in libvirt.so.0.1002.11[7fed0ca72000+363000]
1168672 – “libvirtError: Unable to write to ‘/sys/fs/cgroup/cpuset/machine.slice/machine-qemu\x2dinstance\x2d00000002.scope/cpuset.mems’: Device or resource busy”
1172571 – CVE-2014-8131 libvirt: deadlock and segfault in qemuConnectGetAllDomainStats [fedora-all]
1172569 – CVE-2014-8131 libvirt: deadlock and segfault in qemuConnectGetAllDomainStats
1185769 – CVE-2015-0236 libvirt: missing ACL check for the VIR_DOMAIN_XML_SECURE flag in save images and snapshots objects [fedora-all]
1184431 – CVE-2015-0236 libvirt: missing ACL check for the VIR_DOMAIN_XML_SECURE flag in save images and snapshots objects
1176179 – CVE-2014-8136 libvirt: local denial of service in qemu/qemu_driver.c [fedora-all]
1176176 – CVE-2014-8136 libvirt: local denial of service in qemu/qemu_driver.c<br
* Rebased to version 1.2.9.2
* CVE-2014-8131: deadlock and segfault in qemuConnectGetAllDomainStats (bz #1172571)
* CVE-2015-0236: missing ACL check for the VIR_DOMAIN_XML_SECURE flag in save images and snapshots objects (bz #1185769)
* CVE-2014-8136: local denial of service in qemu/qemu_driver.c (bz #1176179)
* Fix crash parsing nbd URIs (bz #1188644)
* Fix domain startup failing with ‘strict’ mode in numatune (bz #1168672)
DSA-3157 ruby1.9.1 – security update
Multiple vulnerabilities were discovered in the interpreter for the Ruby
language:
DSA-3158 unrtf – security update
Michal Zalewski and Hanno Boeck discovered several vulnerabilities in
unrtf, a RTF to other formats converter, leading to a denial of service
(application crash) or, potentially, the execution of arbitrary code.
Vuln: LIVE555 Streaming Media 'parseRTSPRequestString()' Function Buffer Overflow Vulnerability
LIVE555 Streaming Media ‘parseRTSPRequestString()’ Function Buffer Overflow Vulnerability
Fedora EPEL 5 Security Update: drupal7-path_breadcrumbs-3.2-1.el5
Resolved Bugs
1190134 – drupal: access bypass vulnerability in Path Breadcrumbs module (SA-CONTRIB-2015-037)
1190136 – drupal7-path_breadcrumbs: drupal: access bypass vulnerability in Path Breadcrumbs module (SA-CONTRIB-2015-037) [epel-all]
1190389 – drupal7-path_breadcrumbs-3.2 is available<br
[SA-CONTRIB-2015-037 – Access Bypass](https://www.drupal.org/node/2420139)
Fedora EPEL 6 Security Update: drupal7-path_breadcrumbs-3.2-1.el6
Resolved Bugs
1190134 – drupal: access bypass vulnerability in Path Breadcrumbs module (SA-CONTRIB-2015-037)
1190136 – drupal7-path_breadcrumbs: drupal: access bypass vulnerability in Path Breadcrumbs module (SA-CONTRIB-2015-037) [epel-all]
1190389 – drupal7-path_breadcrumbs-3.2 is available<br
[SA-CONTRIB-2015-037 – Access Bypass](https://www.drupal.org/node/2420139)
CVE-2014-9656
The tt_sbit_decoder_load_image function in sfnt/ttsbit.c in FreeType before 2.5.4 does not properly check for an integer overflow, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a crafted OpenType font.
CVE-2014-9657
The tt_face_load_hdmx function in truetype/ttpload.c in FreeType before 2.5.4 does not establish a minimum record size, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a crafted TrueType font.