[SECURITY] Fedora 8 Update: boost-1.34.1-7.fc8

updates at fedoraproject.org updates at fedoraproject.org
Thu Mar 13 07:49:35 UTC 2008 

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2008-0754
2008-03-13 05:56:44
--------------------------------------------------------------------------------

Name        : boost
Product     : Fedora 8
Version     : 1.34.1
Release     : 7.fc8
URL         : http://www.boost.org/
Summary     : The Boost C++ Libraries
Description :
Boost provides free peer-reviewed portable C++ source libraries.  The
emphasis is on libraries which work well with the C++ Standard
Library, in the hopes of establishing "existing practice" for
extensions and providing reference implementations so that the Boost
libraries are suitable for eventual standardization. (Some of the
libraries have already been proposed for inclusion in the C++
Standards Committee's upcoming C++ Standard Library Technical Report.)

--------------------------------------------------------------------------------
ChangeLog:

* Wed Jan 16 2008 Petr Machata <pmachata at redhat.com> 1.34.1-7
- Fixes for boost.regex (rev 42674).
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #428975 - CVE-2008-0171 CVE-2008-0172 Multiple boost vulnerabilities [Fedora 8]
        https://bugzilla.redhat.com/show_bug.cgi?id=428975
  [ 2 ] Bug #428316 - CVE-2008-0171 boost regular expression memory corruption flaws
        https://bugzilla.redhat.com/show_bug.cgi?id=428316
  [ 3 ] Bug #428320 - CVE-2008-0172 boost regular expression NULL dereference flaw
        https://bugzilla.redhat.com/show_bug.cgi?id=428320
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update boost' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------

More information about the package-announce mailing list