Security information listing.
# yum list-security
Loaded plugins: aliases, protect-packages, protectbase, security, versionlock
1765 packages excluded due to repository protections
Reading version lock configuration
FEDORA-2008-5476 security clamav-0.93.1-1.fc9.i386
FEDORA-2008-5476 security clamav-data-0.93.1-1.fc9.i386
FEDORA-2008-5476 security clamav-filesystem-0.93.1-1.fc9.i386
FEDORA-2008-5476 security clamav-lib-0.93.1-1.fc9.i386
FEDORA-2008-5476 security clamav-server-0.93.1-1.fc9.i386
FEDORA-2008-5476 security clamav-server-sysv-0.93.1-1.fc9.i386
FEDORA-2008-5476 security clamav-update-0.93.1-1.fc9.i386
FEDORA-2008-5072 bugfix cvs-1.11.22-14.fc9.i386
FEDORA-2008-5452 bugfix epiphany-2.22.2-2.fc9.i386
FEDORA-2008-5416 bugfix gnome-python2-2.22.1-2.fc9.i386
FEDORA-2008-5416 bugfix gnome-python2-bonobo-2.22.1-2.fc9.i386
FEDORA-2008-5416 bugfix gnome-python2-canvas-2.22.1-2.fc9.i386
FEDORA-2008-5416 bugfix gnome-python2-gconf-2.22.1-2.fc9.i386
FEDORA-2008-5416 bugfix gnome-python2-gnomevfs-2.22.1-2.fc9.i386
FEDORA-2008-5196 bugfix gtkmm24-2.12.7-1.fc9.i386
FEDORA-2008-4976 bugfix lcms-1.17-5.fc9.i386
FEDORA-2008-4976 bugfix lcms-libs-1.17-5.fc9.i386
FEDORA-2008-5525 bugfix libcurl-7.18.2-1.fc9.i386
FEDORA-2008-5562 bugfix libdrm-2.4.0-0.13.fc9.i386
FEDORA-2008-5448 bugfix libraw1394-1.3.0-7.fc9.i386
FEDORA-2008-5450 bugfix yelp-2.22.1-3.fc9.i386
list-security done
# yum info-security
Loaded plugins: aliases, protect-packages, protectbase, security, versionlock
1765 packages excluded due to repository protections
Reading version lock configuration
===============================================================================
clamav-0.93.1-1.fc9
===============================================================================
Update ID : FEDORA-2008-5476
Release : Fedora 9
Type : security
Status : stable
Issued : 2008-06-20 16:44:24
Bugs : 451761 - CVE-2008-2713 clamav: DoS / crash via crafted petite file
Description : CVE-2008-2713
Files : clamav-debuginfo-0.93.1-1.fc9.ppc64.rpm
: clamav-milter-sysv-0.93.1-1.fc9.ppc64.rpm
: clamav-milter-sendmail-0.93.1-1.fc9.ppc64.rpm
: clamav-milter-core-0.93.1-1.fc9.ppc64.rpm
...
===============================================================================
gnome-python2-2.22.1-2.fc9
===============================================================================
Update ID : FEDORA-2008-5416
Release : Fedora 9
Type : bugfix
Status : stable
Issued : 2008-06-20 16:54:54
Bugs : 451754 - /usr/share/gtk-doc should be owned by gnome-python2-gnomevfs
Description : Update to the latest gnome-python 2.22 release.
Files : gnome-python2-debuginfo-2.22.1-2.fc9.ppc64.rpm
: gnome-python2-devel-2.22.1-2.fc9.ppc64.rpm
: gnome-python2-gnomevfs-2.22.1-2.fc9.ppc64.rpm
: gnome-python2-gconf-2.22.1-2.fc9.ppc64.rpm
...
# yum info-sec FEDORA-2008-5676
...
===============================================================================
phpMyAdmin-2.11.7-1.fc9
===============================================================================
Update ID : FEDORA-2008-5676
Release : Fedora 9
Type : security
Status : stable
Issued : 2008-06-25 00:44:32
Bugs : 452497 - phpMyAdmin < 2.11.7-rc2 contains non-documented security bug
Description : This update solves PMASA-2008-4 (phpMyAdmin security
: announcement) from 2008-06-23: XSS on plausible
: insecure PHP installation; see http://www.phpmyadm
: in.net/home_page/security.php?issue=PMASA-2008-4
: - [interface] New field cannot be auto-increment
: and primary key - [dbi] Incorrect interpretation
: for some mysqli field flags - [display] part 1:
: do not display a TEXT utf8_bin as BLOB (fixed for
: mysqli extension only) - [interface] sanitize the
: after_field parameter, thanks to Norman Hippert -
: [structure] do not remove the BINARY attribute in
: drop-down - [session] Overriding
: session.hash_bits_per_character - [interface]
: sanitize the table comments in table print view,
: thanks to Norman Hippert - [general]
: Auto_Increment selected for TimeStamp by Default -
: [display] No tilde for InnoDB row counter when we
: know it for sure, thanks to Vladyslav Bakayev -
: dandy76 - [display] alt text causes duplicated
: strings - [interface] Cannot upload BLOB into
: existing row - [export] HTML in exports getting
: corrupted, thanks to Jason Judge - jasonjudge -
: [interface] BINARY not treated as BLOB:
: update/delete issues - [general] protection
: against XSS when register_globals is on and
: .htaccess has no effect, thanks to Tim Starling -
: [export] Firefox 3 and .sql.gz (corrupted); detect
: Gecko 1.9, thanks to Juergen Wind
Files : phpMyAdmin-2.11.7-1.fc9.noarch.rpm
: phpMyAdmin-2.11.7-1.fc9.src.rpm
info-sec done
Updating only for security reasons.
# yum --security update
...
Limiting packages to security relevant ones
Needed 7 (+7 related) of 42 transaction packages, for security
--> Running transaction check
---> Package clamav-server.i386 0:0.93.1-1.fc9 set to be updated
---> Package clamav-lib.i386 0:0.93.1-1.fc9 set to be updated
---> Package clamav-update.i386 0:0.93.1-1.fc9 set to be updated
---> Package clamav-server-sysv.i386 0:0.93.1-1.fc9 set to be updated
---> Package clamav-data.i386 0:0.93.1-1.fc9 set to be updated
---> Package clamav.i386 0:0.93.1-1.fc9 set to be updated
---> Package clamav-filesystem.i386 0:0.93.1-1.fc9 set to be updated
--> Finished Dependency Resolution
Dependencies Resolved
=============================================================================
Package Arch Version Repository Size
=============================================================================
Updating:
clamav i386 0.93.1-1.fc9 updates 650 k
clamav-data i386 0.93.1-1.fc9 updates 14 M
clamav-filesystem i386 0.93.1-1.fc9 updates 19 k
clamav-lib i386 0.93.1-1.fc9 updates 301 k
clamav-server i386 0.93.1-1.fc9 updates 61 k
clamav-server-sysv i386 0.93.1-1.fc9 updates 18 k
clamav-update i386 0.93.1-1.fc9 updates 65 k
Transaction Summary
=============================================================================
Install 0 Package(s)
Update 7 Package(s)
Remove 0 Package(s)
Total download size: 15 M
Is this ok [y/N]: y
