[SECURITY] Fedora 18 Update: dropbear-2013.59-1.fc18

updates at fedoraproject.org updates at fedoraproject.org
Fri Oct 18 19:48:13 UTC 2013 

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-18606
2013-10-09 23:28:21
--------------------------------------------------------------------------------

Name        : dropbear
Product     : Fedora 18
Version     : 2013.59
Release     : 1.fc18
URL         : http://matt.ucc.asn.au/dropbear/dropbear.html
Summary     : A lightweight SSH server and client
Description :
Dropbear is a relatively small SSH server and client. Dropbear
is particularly useful for "embedded"-type Linux (or other Unix)
systems, such as wireless routers.

--------------------------------------------------------------------------------
Update Information:

New version/Unbundle libtom*/harden build/AArch64 support.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct  7 2013 Christopher Meng <rpm at cicku.me> - 2013.59-1
- New version.
- Adapt the version tag to match the actual one.
- Add systemd BR(BZ#992141).
- Unbundle libtom libraries(BZ#992141).
- Add AArch64 support(BZ#925278).
- SPEC cleanup.
* Sat Aug  3 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.58-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Tue May 21 2013 Christopher Meng <rpm at cicku.me> - 0.58-4
- Cleanup systemd unit files.
* Thu May 16 2013 Christopher Meng <rpm at cicku.me> - 0.58-3
- Rebuilt.
* Thu May 16 2013 Christopher Meng <rpm at cicku.me> - 0.58-2
- Force PIE build for security issue.
* Wed May  8 2013 Itamar Reis Peixoto <itamar at ispbrasil.com.br> - 0.58-1
- new version
* Wed Feb 13 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.55-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1017983 - CVE-2013-4421 dropbear: memory exhaustion DoS via large decompressed payloads
        https://bugzilla.redhat.com/show_bug.cgi?id=1017983
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update dropbear' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

More information about the package-announce mailing list