Resolved Bugs
1178908 – CVE-2014-9449 exiv2: buffer overflow in RiffVideo::infoTagsHandler
1178909 – CVE-2014-9449 exiv2: buffer overflow in RiffVideo::infoTagsHandler [fedora-21]<br
Security fix for CVE-2014-9449

Resolved Bugs
1179126 – CVE-2015-0552 gcab: directory traversal flaw
1179127 – CVE-2015-0552 gcab: directory traversal flaw [fedora-all]<br
Security fix for CVE-2015-0552

Resolved Bugs
1013589 – CVE-2013-5679 CVE-2013-5960 owasp-esapi-java: symmetric encryption MAC bypass
1013591 – CVE-2013-5679 owasp-esapi-java: symmetric encryption MAC bypass [fedora-all]<br
Release 2.1.0.

Resolved Bugs
1175144 – docker-io-1.4.1 is available
1173950 – docker-io can’t be installed on rhel 6.5 due to requirement device-mapper-libs >= 1.02.90-1
1173325 – CVE-2014-9357 CVE-2014-9356 CVE-2014-9358 docker-io: various flaws [epel-6]
1172761 – CVE-2014-9356 docker: Path traversal during processing of absolute symlinks
1172782 – CVE-2014-9357 docker: Escalation of privileges during decompression of LZMA archives
1172787 – CVE-2014-9358 docker: Path traversal and spoofing opportunities presented through image identifiers<br
Resolves: rhbz#1175144 – update to 1.4.1
Resolves: rhbz#1173950 remove min version requirements on device-mapper-libs
Security fix for CVE-2014-9357, CVE-2014-9358, CVE-2014-9356

Resolved Bugs
1162783 – CVE-2004-2771 CVE-2014-7844 mailx: command execution flaw
1175521 – CVE-2004-2771 CVE-2014-7844 nail: mailx: command execution flaw [epel-5]<br
Security fix for CVE-2004-2771, CVE-2014-7844

Resolved Bugs
1096604 – CVE-2014-3453 drupal6-flag: code execution flaw in flag importer
1096607 – drupal6-flag: code execution flaw in flag importer [fedora-20]<br
CVE-2014-3453rnrn* https://access.redhat.com/security/cve/CVE-2014-3453rn* http://www.openwall.com/lists/oss-security/2014/05/12/2

Resolved Bugs
1096604 – CVE-2014-3453 drupal6-flag: code execution flaw in flag importer
1096607 – drupal6-flag: code execution flaw in flag importer [fedora-20]<br
CVE-2014-3453rnrn* https://access.redhat.com/security/cve/CVE-2014-3453rn* http://www.openwall.com/lists/oss-security/2014/05/12/2

Resolved Bugs
1096604 – CVE-2014-3453 drupal6-flag: code execution flaw in flag importer
1096607 – drupal6-flag: code execution flaw in flag importer [fedora-20]<br
CVE-2014-3453rnrn* https://access.redhat.com/security/cve/CVE-2014-3453rn* http://www.openwall.com/lists/oss-security/2014/05/12/2

Resolved Bugs
1093276 – CVE-2014-0364 smack: IQ response spoofing
1093277 – CVE-2014-0364 smack: IQ response spoofing [fedora-all]<br
update to 4.0.6. fix CVE-2014-0364

Resolved Bugs
1177278 – CVE-2014-8964 mingw-pcre: pcre: incorrect handling of zero-repeat assertion conditions [fedora-all]<br
Update to 8.35 and fix CVE-2014-8964