Resolved Bugs
1209804 – CVE-2015-2928 CVE-2015-2929 tor: multiple issues fixed in the new upstream releases
1209806 – CVE-2015-2928 CVE-2015-2929 tor: multiple issues fixed in the new upstream releases [epel-all]
1204775 – tor: security fixes in 0.2.4.26 and 0.2.5.11 [epel-all]
1204773 – CVE-2015-2688 CVE-2015-2689 tor: security fixes in 0.2.4.26 and 0.2.5.11<br
Update to upstream release 0.2.5.12.
Update to upstream release 0.2.5.11.

Fedora

Fedora EPEL 5 Security Update: tor-0.2.4.27-1.el5

April 11, 2015 007admin

Fedora

Fedora EPEL 6 Security Update: tor-0.2.5.12-1.el6

April 11, 2015 007admin

Debian

DSA-3222 chrony – security update

April 11, 2015 007admin

Miroslav Lichvar of Red Hat discovered multiple vulnerabilities in chrony,
an alternative NTP client and server:

Debian

DSA-3224 libx11 – security update

April 11, 2015 007admin

Abhishek Arya discovered a buffer overflow in the MakeBigReq macro
provided by libx11, which could result in denial of service or the
execution of arbitrary code.

007 Software

Monthly Archives: April 2015

Vuln: KTorrent PHP Code Injection And Security Bypass Vulnerabilities

Vuln: Linux Kernel 'btrfs' File Permissions Security Bypass Vulnerability

Vuln: libpng 'png_formatted_warning()' Function Off-By-One Error Buffer Overflow Vulnerability

Vuln: LibTIFF 'TIFFroundup()' Remote Integer Overflow Vulnerability

Safari Cross-Domain Hijacking

Fedora EPEL 7 Security Update: tor-0.2.5.12-1.el7

Fedora EPEL 5 Security Update: tor-0.2.4.27-1.el5

Fedora EPEL 6 Security Update: tor-0.2.5.12-1.el6

DSA-3222 chrony – security update

DSA-3224 libx11 – security update

Software and Security Information