Update to 2.78.0. Fixes bug #1409216
Category Archives: Fedora
Fedora – Security Updates
calibre-2.78.0-1.fc25
Update to 2.78.0. Fixes bug #1409216
jasper-1.900.13-2.fc25
Security fix for CVE-2016-9583
jasper-1.900.13-2.fc24 jasper-1.900.13-2.fc24
Security fix for CVE-2016-9583
mariadb-10.1.21-1.fc25
Important change:
* Most of the utilities were move to the new sub-package “server-utils”
Other enhancements: (see changelog)
* CVE fixes, SPECfile fixes, patches revision, tests blacklist revisions
* Preparation and testing of the Cracklib plugin to be added
mariadb-10.1.21-1.fc24
Important change:
* most of the utilities were move to the new sub-package “server-utils”
Other enhancements: (see changelog)
* CVE fixes, SPECfile fixes, patches revision, tests blacklist revisions
* Preparation and testing of the Cracklib plugin to be added
flatpak-0.8.2-1.fc24
flatpak 0.8.2 release, fixing a security issue that could lead to sandbox escaping. For details, see https://github.com/flatpak/flatpak/releases/tag/0.8.2
flatpak-0.8.2-1.fc25
flatpak 0.8.2 release, fixing a security issue that could lead to sandbox escaping. For details, see https://github.com/flatpak/flatpak/releases/tag/0.8.2
wordpress-4.7.2-1.fc25
**WordPress 4.7.2 Security Release**
WordPress 4.7.2 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately.
WordPress versions 4.7.1 and earlier are affected by three security issues:
* The user interface for assigning taxonomy terms in Press This is shown to users who do not have permissions to use it. Reported by David Herrera of Alley Interactive.
* WP_Query is vulnerable to a SQL injection (SQLi) when passing unsafe data. WordPress core is not directly vulnerable to this issue, but we’ve added hardening to prevent plugins and themes from accidentally causing a vulnerability. Reported by Mo Jangda (batmoo).
* A cross-site scripting (XSS) vulnerability was discovered in the posts list table. Reported by Ian Dunn of the WordPress Security Team.
wordpress-4.7.2-1.fc24
**WordPress 4.7.2 Security Release**
WordPress 4.7.2 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately.
WordPress versions 4.7.1 and earlier are affected by three security issues:
* The user interface for assigning taxonomy terms in Press This is shown to users who do not have permissions to use it. Reported by David Herrera of Alley Interactive.
* WP_Query is vulnerable to a SQL injection (SQLi) when passing unsafe data. WordPress core is not directly vulnerable to this issue, but we’ve added hardening to prevent plugins and themes from accidentally causing a vulnerability. Reported by Mo Jangda (batmoo).
* A cross-site scripting (XSS) vulnerability was discovered in the posts list table. Reported by Ian Dunn of the WordPress Security Team.