Fedora 7 Update: tk-8.4.13-7.fc7 - The Community's Center for Security


The central voice for Linux and Open Source security news

Welcome!

Sign up!

EnGarde Community

Polls

Is Mandatory Access Control Too Much Security For Enterprise's Linux?

	Yes, too difficult to configure and manage.
	No. You can never have enough security.
	Yes. Standard Linux security settings work for us.
	No. Industry demands will demand SELinux.
	Don't know.

Advisories

Community

Linux Events

Linux User Groups

Link to Us

Security Center

Book Reviews

Security Dictionary

Security Tips

SELinux

White Papers

Featured Blogs

Emily Ratliff: OS Security

DanWalsh LiveJournal

Security Bloggers Network

Latest Newsletters

Linux Security Week: September 1st, 2008

Linux Advisory Watch: August 29th, 2008

LinuxSecurity Newsletters

RSS Feeds

Get the LinuxSecurity news you want faster with RSS

Fedora 7 Update: tk-8.4.13-7.fc7

User Rating:

How can I rate this item?

Posted by Benjamin D. Thomas

Fixed security issue - buffer overflow in gif parsing.

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2008-1131
2008-02-05 23:10:30
--------------------------------------------------------------------------------

Name        : tk
Product     : Fedora 7
Version     : 8.4.13
Release     : 7.fc7
URL         : http://tcl.sourceforge.net
Summary     : The graphical toolkit for the Tcl scripting language
Description :
When paired with the Tcl scripting language, Tk provides a fast and powerful
way to create cross-platform GUI applications.

--------------------------------------------------------------------------------
Update Information:

Fixed security issue - buffer overflow in gif parsing.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jan 28 2008 Marcela Maslanova  - 1:8.4.13-7
- attached upstream patch
- similar to CVE-2006-4484, problem with GIF again #430100
* Mon Oct 15 2007 Marcela Maslanova  - 1:8.4.13-6
- CVE-2007-5137 gif buffer overflow
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #431518 - CVE-2008-0553 tk: GIF handling buffer overflow
        https://bugzilla.redhat.com/show_bug.cgi?id=431518
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update tk' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------

_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-announce

< Prev		Next >

Partner:

Latest Features

Review: Hacking Exposed Linux, Third Edition

Security Features of Firefox 3.0

Review: The Book of Wireless

April 2008 Open Source Tool of the Month: sudo

Open Source Tool of March: ZoneMinder

Meet the Anti-Nmap: PSAD

Open Source Tool of February: Nmap!

Yesterday's Edition

New Firefox Plug-In Double-Checks So-Called Unsafe Sites

Google Chrome Flaws Come Soon After Browser Release

QuickLinks: Comunity , HOWTOs , Blogs , Features , Book Reviews , Networking ,
Security Projects , Latest News , Newsletters , SELinux , Privacy , Home,
Hardening , About Us, Advertise, Legal Notice, RSS, Guardian Digital