[SECURITY] Fedora 17 Update: apache-commons-compress-1.4.1-1.fc17
updates at fedoraproject.org
updates at fedoraproject.org
Sat Jun 2 23:56:50 UTC 2012
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-8428
2012-05-26 03:17:51
--------------------------------------------------------------------------------
Name : apache-commons-compress
Product : Fedora 17
Version : 1.4.1
Release : 1.fc17
URL : http://commons.apache.org/compress/
Summary : Java API for working with tar, zip and bzip2 files
Description :
The code in this component came from Avalon's Excalibur, but originally
from Ant, as far as life in Apache goes. The tar package is originally
Tim Endres' public domain package. The bzip2 package is based on the
work done by Keiron Liddle. It has migrated via:
Ant -> Avalon-Excalibur -> Commons-IO -> Commons-Compress.
--------------------------------------------------------------------------------
Update Information:
Update to 1.4.1, fixing CVE-2012-2098
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 24 2012 Sandro Mathys <red at fedoraproject.org> - 1.4.1-1
- Updated to 1.4.1
- Fixes CVE-2012-2098 Low: Denial of Service
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update apache-commons-compress' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list