[SECURITY] Fedora 17 Update: automake17-1.7.9-16.fc17

updates at fedoraproject.org updates at fedoraproject.org
Thu Oct 4 00:04:49 UTC 2012


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-14770
2012-09-26 08:08:30
--------------------------------------------------------------------------------

Name        : automake17
Product     : Fedora 17
Version     : 1.7.9
Release     : 16.fc17
URL         : http://sources.redhat.com/automake
Summary     : A GNU tool for automatically creating Makefiles
Description :
Automake is a tool for automatically generating
`Makefile.in' files compliant with the GNU Coding Standards.

This package contains Automake 1.7, an older version of Automake.
You should install it if you need to run automake in a project that
has not yet been updated to work with latest version of Automake.

--------------------------------------------------------------------------------
Update Information:

Fixed security problem CVE-2012-3386.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 25 2012 Pavel Raiskup <praiskup at redhat.com> - 1.7.9-16
- fix for CVE-2012-3386 (#838661)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #838661 - CVE-2012-3386 automake: locally exploitable "make distcheck" bug [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=838661
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update automake17' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


More information about the package-announce mailing list