Resolved Bugs
1192962 – drupal6-views: drupal-views: multiple vulnerabilities (SA-CONTRIB-2015-039) [epel-all]
1192340 – drupal6-views-2.18 is available<br
Latest upstream release.
Category Archives: Fedora
Fedora – Security Updates
Fedora EPEL 6 Security Update: unbound-1.5.1-1.el6
Resolved Bugs
1172067 – CVE-2014-8602 unbound: specially crafted request can lead to denial of service [epel-all]<br
Updated to 1.5.1 for CVE-2014-8602 (rhbz#1172067)
Fedora 21 Security Update: libvirt-1.2.9.2-1.fc21
Resolved Bugs
1188644 – segfault at 0 ip 00007fed0cb2eb4c sp 00007fecf005fad0 error 4 in libvirt.so.0.1002.11[7fed0ca72000+363000]
1168672 – “libvirtError: Unable to write to ‘/sys/fs/cgroup/cpuset/machine.slice/machine-qemu\x2dinstance\x2d00000002.scope/cpuset.mems’: Device or resource busy”
1172571 – CVE-2014-8131 libvirt: deadlock and segfault in qemuConnectGetAllDomainStats [fedora-all]
1172569 – CVE-2014-8131 libvirt: deadlock and segfault in qemuConnectGetAllDomainStats
1185769 – CVE-2015-0236 libvirt: missing ACL check for the VIR_DOMAIN_XML_SECURE flag in save images and snapshots objects [fedora-all]
1184431 – CVE-2015-0236 libvirt: missing ACL check for the VIR_DOMAIN_XML_SECURE flag in save images and snapshots objects
1176179 – CVE-2014-8136 libvirt: local denial of service in qemu/qemu_driver.c [fedora-all]
1176176 – CVE-2014-8136 libvirt: local denial of service in qemu/qemu_driver.c<br
* Rebased to version 1.2.9.2
* CVE-2014-8131: deadlock and segfault in qemuConnectGetAllDomainStats (bz #1172571)
* CVE-2015-0236: missing ACL check for the VIR_DOMAIN_XML_SECURE flag in save images and snapshots objects (bz #1185769)
* CVE-2014-8136: local denial of service in qemu/qemu_driver.c (bz #1176179)
* Fix crash parsing nbd URIs (bz #1188644)
* Fix domain startup failing with ‘strict’ mode in numatune (bz #1168672)
Fedora 20 Security Update: qemu-1.6.2-13.fc20
Fedora 20 Security Update: libvirt-1.1.3.9-1.fc20
Resolved Bugs
1185769 – CVE-2015-0236 libvirt: missing ACL check for the VIR_DOMAIN_XML_SECURE flag in save images and snapshots objects [fedora-all]
1184431 – CVE-2015-0236 libvirt: missing ACL check for the VIR_DOMAIN_XML_SECURE flag in save images and snapshots objects
1176179 – CVE-2014-8136 libvirt: local denial of service in qemu/qemu_driver.c [fedora-all]
1176176 – CVE-2014-8136 libvirt: local denial of service in qemu/qemu_driver.c<br
* Rebased to version 1.1.3.9
* CVE-2015-0236: missing ACL check for the VIR_DOMAIN_XML_SECURE flag in save images and snapshots objects (bz #1185769)
* CVE-2014-8136: local denial of service in qemu/qemu_driver.c (bz #1176179)
Fedora 21 Security Update: drupal7-path_breadcrumbs-3.2-1.fc21
Resolved Bugs
1190134 – drupal: access bypass vulnerability in Path Breadcrumbs module (SA-CONTRIB-2015-037)
1190389 – drupal7-path_breadcrumbs-3.2 is available
1190135 – drupal7-path_breadcrumbs: drupal: access bypass vulnerability in Path Breadcrumbs module (SA-CONTRIB-2015-037) [fedora-all]<br
[SA-CONTRIB-2015-037 – Access Bypass](https://www.drupal.org/node/2420139)
Fedora 20 Security Update: drupal7-path_breadcrumbs-3.2-1.fc20
Resolved Bugs
1190135 – drupal7-path_breadcrumbs: drupal: access bypass vulnerability in Path Breadcrumbs module (SA-CONTRIB-2015-037) [fedora-all]
1190389 – drupal7-path_breadcrumbs-3.2 is available
1190134 – drupal: access bypass vulnerability in Path Breadcrumbs module (SA-CONTRIB-2015-037)<br
[SA-CONTRIB-2015-037 – Access Bypass](https://www.drupal.org/node/2420139)
Fedora EPEL 6 Security Update: drupal7-path_breadcrumbs-3.2-1.el6
Resolved Bugs
1190134 – drupal: access bypass vulnerability in Path Breadcrumbs module (SA-CONTRIB-2015-037)
1190136 – drupal7-path_breadcrumbs: drupal: access bypass vulnerability in Path Breadcrumbs module (SA-CONTRIB-2015-037) [epel-all]
1190389 – drupal7-path_breadcrumbs-3.2 is available<br
[SA-CONTRIB-2015-037 – Access Bypass](https://www.drupal.org/node/2420139)
Fedora EPEL 5 Security Update: drupal7-path_breadcrumbs-3.2-1.el5
Resolved Bugs
1190134 – drupal: access bypass vulnerability in Path Breadcrumbs module (SA-CONTRIB-2015-037)
1190136 – drupal7-path_breadcrumbs: drupal: access bypass vulnerability in Path Breadcrumbs module (SA-CONTRIB-2015-037) [epel-all]
1190389 – drupal7-path_breadcrumbs-3.2 is available<br
[SA-CONTRIB-2015-037 – Access Bypass](https://www.drupal.org/node/2420139)
Fedora 20 Security Update: qpid-cpp-0.30-8.fc20
Resolved Bugs
1184488 – build failure in qpid-cpp-0.30/src/tests/txshift.cpp
1181721 – CVE-2015-0203 qpid-cpp: qpidd can be crashed by unauthenticated user
1159008 – juno qpid: install qpid-cpp-server’ returned 1: Error: Package: qpid-cpp-client-0.30-3.fc21.x86_64<br
Bumped release to rebuild against qpid-proton 0.8.
Resolves: BZ#1184488
Resolves: BZ#1181721
Resolves: BZ#1181721
Enabled building the linear store.