Resolved Bugs
1184030 – CVE-2015-1182 polarssl: remote attack using crafted certificates [epel-all]
1184028 – CVE-2015-1182 polarssl: remote attack using crafted certificates<br
– Fix for CVE-2015-1182

Resolved Bugs
1182578 – CVE-2015-1029 puppetlabs-stdlib: local information leakage and local privilege escalation vulnerability
1182580 – CVE-2015-1029 puppetlabs-stdlib: local information leakage and local privilege escalation vulnerability [epel-all]<br
Security fix for CVE-2015-1029

Resolved Bugs
1184030 – CVE-2015-1182 polarssl: remote attack using crafted certificates [epel-all]
1184028 – CVE-2015-1182 polarssl: remote attack using crafted certificates<br
– Fix for CVE-2015-1182

Resolved Bugs
1183651 – grep: heap buffer overrun
1183653 – grep: heap buffer overrun [fedora-all]<br
This is an update fixing buffer overflow of grep -F.

Resolved Bugs
1184028 – CVE-2015-1182 polarssl: remote attack using crafted certificates
1184029 – CVE-2015-1182 polarssl: remote attack using crafted certificates [fedora-all]<br
– Fix for CVE-2015-1182

Resolved Bugs
1132282 – CVE-2014-4607 dump: lzo: lzo1x_decompress_safe() integer overflow [fedora-all]<br
Security fix for CVE-2014-4607

Resolved Bugs
1182154 – CVE-2015-1196 patch: directory traversal via symlinks
1182157 – patch: directory traversal via symlinks [fedora-all]<br
This update applies upstream fixes for CVE-2015-1196, directory traversal via symlink, as well as an integer overflow in line number handling.

Resolved Bugs
1184028 – CVE-2015-1182 polarssl: remote attack using crafted certificates
1184029 – CVE-2015-1182 polarssl: remote attack using crafted certificates [fedora-all]<br
– Fix for CVE-2015-1182

Resolved Bugs
1132282 – CVE-2014-4607 dump: lzo: lzo1x_decompress_safe() integer overflow [fedora-all]
1112418 – CVE-2014-4607 lzo: lzo1x_decompress_safe() integer overflow<br
Security fix for CVE-2014-4607

Updated to security update of 20.1.2015