Fedora Legacy Test Update Notification: emacs

Marc Deslauriers marcdeslauriers at videotron.ca
Thu Apr 27 00:09:36 UTC 2006 

---------------------------------------------------------------------
Fedora Legacy Test Update Notification
FEDORALEGACY-2006-152898
Bugzilla https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=152898
2006-04-26
---------------------------------------------------------------------

Name        : emacs
Versions    : rh73: emacs-21.2-3.legacy
Versions    : rh9: emacs-21.2-34.legacy
Versions    : fc1: emacs-21.3-9.2.legacy
Summary     : The libraries needed to run the GNU Emacs text editor.
Description :
Emacs is a powerful, customizable, self-documenting, modeless text
editor. Emacs contains special code editing features, a scripting
language (elisp), and the capability to read mail, news, and more
without leaving the editor.

---------------------------------------------------------------------
Update Information:

Updated Emacs packages that fix a string format issue are now available.

Emacs is a powerful, customizable, self-documenting, modeless text
editor.

Max Vozeler discovered several format string vulnerabilities in the
movemail utility of Emacs. If a user connects to a malicious POP server,
an attacker can execute arbitrary code as the user running emacs. The
Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CVE-2005-0100 to this issue.

Users of Emacs are advised to upgrade to these updated packages, which
contain backported patches to correct this issue.

---------------------------------------------------------------------
Changelogs

rh73:
* Sun Mar 12 2006 Jesse Keating <jkeating at j2solutions.net> 21.2-3.legacy
- Patch for CAN-2005-0100 (#152898)

rh9:
* Sun Mar 12 2006 Jesse Keating <jkeating at j2solutions.net> 21.2-34.legacy
- Patch for CAN-2005-0100 (#152898)

fc1:
* Wed Mar 15 2006 David Eisenstein <deisenst at gtw.net> 21.3-9.2.legacy
- Clean up the #101818 (vm/break dumper problem) workaround

* Wed Mar 15 2006 David Eisenstein <deisenst at gtw.net> 21.3-9.1.legacy
- Oops.  Forgot to rework "make install" for the broken setarch.
  Now done.

* Wed Mar 15 2006 David Eisenstein <deisenst at gtw.net> 21.3-9.legacy
- Re-instate setarch stuff; but make use of setarch dependent upon
  whether or not it is broken in this given invocation of rpmbuild.
  Why?  If setarch doesn't break, it is probably needed and will be
  used for the bugzilla #101818 issue.  If setarch *does* break, then
  it is likely breaking because it is operating within another setarch
  (FC1's setarch breaks under that circumstance), such as when being
  built by plague/mock.  In that instance, it is not needed.

* Sun Mar 12 2006 Jesse Keating <jkeating at j2solutions.net> 21.3-8.legacy
- Patch for CAN-2005-0100 (#152898)
- Remove setarch stuff, not needed in new build system
- Added builddep on autoconf213

---------------------------------------------------------------------
This update can be downloaded from:
  http://download.fedoralegacy.org/
(sha1sums)

rh73:
4441c55cfe91aabf2203d68bcbc0cf2bbd5f8798
redhat/7.3/updates-testing/i386/emacs-21.2-3.legacy.i386.rpm
33e802e8f306f13519dd2c3f045eb9efe5e4680a
redhat/7.3/updates-testing/i386/emacs-el-21.2-3.legacy.i386.rpm
f6293ffe1c51c3bb31f1b3941da0938d8a98eff2
redhat/7.3/updates-testing/i386/emacs-leim-21.2-3.legacy.i386.rpm
a5767f1100037b49602abb80831fa22da135c081
redhat/7.3/updates-testing/SRPMS/emacs-21.2-3.legacy.src.rpm

rh9:
ae56dba68d59f5d49105f7afb6918ac945ad8b01
redhat/9/updates-testing/i386/emacs-21.2-34.legacy.i386.rpm
84047366c8488fa3c95070466b1bd20ce5d8687a
redhat/9/updates-testing/i386/emacs-el-21.2-34.legacy.i386.rpm
8eb8449c456e7d475157992c3e6f8bc4bdf64c7b
redhat/9/updates-testing/i386/emacs-leim-21.2-34.legacy.i386.rpm
4cf0ba484c3ab93210d186beb3c79b68b4e56984
redhat/9/updates-testing/SRPMS/emacs-21.2-34.legacy.src.rpm

fc1:
d56260f010b4603c89516ccf2ddd09c33c8c53c4
fedora/1/updates-testing/i386/emacs-21.3-9.2.legacy.i386.rpm
6bf7cb9bacc6c0f9374849fa4507ededa13193cf
fedora/1/updates-testing/i386/emacs-el-21.3-9.2.legacy.i386.rpm
fb23df114772b6c758499401751dfc389e2e1d88
fedora/1/updates-testing/i386/emacs-leim-21.3-9.2.legacy.i386.rpm
1a1133d917d4993c92a03c30ba08e8916c6a7bfe
fedora/1/updates-testing/SRPMS/emacs-21.3-9.2.legacy.src.rpm

---------------------------------------------------------------------

Please test and comment in bugzilla.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: OpenPGP digital signature
URL: <http://listman.redhat.com/archives/fedora-legacy-list/attachments/20060426/b598d530/attachment.sig>

More information about the fedora-legacy-list mailing list