[SECURITY] Fedora 8 Update: tomboy-0.8.1-3.fc8

updates at fedoraproject.org updates at fedoraproject.org
Tue Nov 13 00:08:59 UTC 2007


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2007-3253
2007-11-13 00:08:54.795816
--------------------------------------------------------------------------------

Name        : tomboy
Product     : Fedora 8
Version     : 0.8.1
Release     : 3.fc8
URL         : http://www.beatniksoftware.com/tomboy/
Summary     : Tomboy is a desktop note-taking application for Linux and Unix
Description :
Tomboy is a desktop note-taking application for Linux and Unix. Simple and easy
to use, but with potential to help you organize the ideas and information you
deal with every day.  The key to Tomboy's usefulness lies in the ability to
relate notes and ideas together.  Using a WikiWiki-like linking system,
organizing ideas is as simple as typing a name.  Branching an idea off is easy
as pressing the Link button. And links between your ideas won't break, even when
renaming and reorganizing them.

--------------------------------------------------------------------------------
Update Information:

This update resolves a low severity security issue where LD_LIBRARY_PATH could potentially get set to the current directory if it wasn't set before Tomboy was launched.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Nov  6 2007 Ray Strode <rstrode at redhat.com> - 0.8.1-3
- drop unused patches, *actually* fix bug 362951, CVE-2005-4790
* Tue Nov  6 2007 Ray Strode <rstrode at redhat.com> - 0.8.1-2
- Fix bug 362951, CVE-2005-4790
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #362951 - CVE-2005-4790 tomboy includes CWD in LD_LIBRARY_PATH [F8]
        https://bugzilla.redhat.com/show_bug.cgi?id=362951
  [ 2 ] CVE-2005-4790
        http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4790
--------------------------------------------------------------------------------
Updated packages:

a209ba7ccbb55e382deab50f7459d36905daf00a tomboy-0.8.1-3.fc8.i386.rpm
995205b725085baa98a12e5ae70ef640de94af76 tomboy-debuginfo-0.8.1-3.fc8.i386.rpm
3015508632106ff79c8843f21863223db6ff00a9 tomboy-debuginfo-0.8.1-3.fc8.x86_64.rpm
9f82e387a6216d87607ec315968a04ffd4c5e600 tomboy-0.8.1-3.fc8.x86_64.rpm
90e3eed381c0ec97f71376ed4bbc8d34f4cbb3b6 tomboy-debuginfo-0.8.1-3.fc8.ppc.rpm
cc0a9db9e81fae13b325ea4b15ec0256ce34e6f9 tomboy-0.8.1-3.fc8.ppc.rpm
6d3847f7f0a3711f431e2a390a14377326e3d11d tomboy-0.8.1-3.fc8.src.rpm

This update can be installed with the "yum" update program.  Use 
su -c 'yum update tomboy' 
at the command line.  For more information, refer to "Managing Software
with yum", available at http://docs.fedoraproject.org/yum/.
--------------------------------------------------------------------------------




More information about the package-announce mailing list