[SECURITY] Fedora 18 Update: ngircd-20.2-1.fc18

updates at fedoraproject.org updates at fedoraproject.org
Mon Apr 8 00:27:05 UTC 2013 

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-4593
2013-03-30 21:02:36
--------------------------------------------------------------------------------

Name        : ngircd
Product     : Fedora 18
Version     : 20.2
Release     : 1.fc18
URL         : http://ngircd.barton.de/
Summary     : Next Generation IRC Daemon
Description :
ngIRCd is a free open source daemon for Internet Relay Chat (IRC),
developed under the GNU General Public License (GPL). It's written from
scratch and is not based upon the original IRCd like many others.

--------------------------------------------------------------------------------
Update Information:

Update to 20.2, which fixes a crash issue. 
--------------------------------------------------------------------------------
ChangeLog:

* Fri Mar 29 2013 Kevin Fenzi <kevin at scrye.com> 20.2-1
- Update to 20.2.
- Fix for CVE-2013-1747
* Thu Mar  7 2013 Tomáš Mráz <tmraz at redhat.com> 20.1-2
- Rebuilt with new GnuTLS
* Sat Feb  2 2013 Kevin Fenzi <kevin at scrye.com> 20.1-1
- Update to 20.1
- Convert to systemd units for f19+
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #929168 - CVE-2013-1747 ngircd: DoS (assertion failure, crash) via a KICK command for a user who is not on the associated channel
        https://bugzilla.redhat.com/show_bug.cgi?id=929168
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update ngircd' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

More information about the package-announce mailing list