[SECURITY] Fedora 9 Update: glib2-2.16.4-1.fc9

updates at fedoraproject.org updates at fedoraproject.org
Thu Jul 3 03:16:40 UTC 2008


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2008-6048
2008-07-03 00:45:37
--------------------------------------------------------------------------------

Name        : glib2
Product     : Fedora 9
Version     : 2.16.4
Release     : 1.fc9
URL         : http://www.gtk.org
Summary     : A library of handy utility functions
Description :
GLib is the low-level core library that forms the basis
for projects such as GTK+ and GNOME. It provides data structure
handling for C, portability wrappers, and interfaces for such runtime
functionality as an event loop, threads, dynamic loading, and an
object system.

This package provides version 2 of GLib.

--------------------------------------------------------------------------------
Update Information:

>From the release announcement:    * Update to PCRE 7.7   - fix a heap-based
buffer overflow in PCRE (CVE-2008-2371)    * Bug fixes:   528752 Win32 build and
SSL not working   539074 Cannot get exit status with g_spawn_command_line_sync()
316221 G_LOCK warns about breaking strict-aliasing rules   519137 g_slice_dup
macro needs cast for 64-bit platform   536158 also bump GHashTable version when
a node is removed via
g_hash_table_iter_remove()/g_hash_table_iter_steal()   529321 make check fails
in glib/pcre   314453 Nautilus crashes in Solaris when browsing the attached
file   502511 g_assert_cmphex prints invalid message   538119 glib's mainloop
leaks a pipe to sub-processes   540459 there are no way of getting the real
number of bytes         written in GMemoryOutputStream   540423 unrecoverable
error after g_seekable_truncate(seekable,0,...)   530196
_g_local_file_has_trash_dir() doesn't handle st_dev == 0   528600
g_dummy_file_get_parent("scheme://example.com/")   536641 Filesystem querying in
gio does not list AFS and autofs         file systems   537392 Additional colon
in xattr name   528433 gdesktopappinfo snafu ...   526320 should not list mounts
that the user doesn't have permiss...   527132 nautilus crash when making ftp
connection   532852 totem_pl_parser_parse_with_base: assertion `...   459905 Bug
in wcwidth data   534085 g_unichar_iswide_cjk() has a totally wrong table    *
Updated translations:   Bulgarian (bg)   German (de)
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jul  1 2008 Matthias Clasen <mclasen at redhat.com> - 2.16.4-1
- Update to 2.16.4
* Mon Jun 16 2008 Matthias Clasen <mclasen at redhat.com> - 2.16.3-7
- Fix a directory ownership oversight (#449885)
* Mon Jun 16 2008 Matthias Clasen <mclasen at redhat.com> - 2.16.3-6
- Fix a race in class initialization that causes assertion 
  failures and crashes
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #452079 - CVE-2008-2371 pcre: heap overflow caused by incorrect option handling
        https://bugzilla.redhat.com/show_bug.cgi?id=452079
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update glib2' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------




More information about the package-announce mailing list