SUSE-SU-2013:1052-1: Security update for pigz
sle-security-updates at lists.suse.com
sle-security-updates at lists.suse.com
Wed Jun 19 09:04:13 MDT 2013
SUSE Security Update: Security update for pigz
______________________________________________________________________________
Announcement ID: SUSE-SU-2013:1052-1
Rating: low
References: #597756 #803933
Cross-References: CVE-2013-0296
Affected Products:
SUSE Studio Onsite 1.3
______________________________________________________________________________
An update that solves one vulnerability and has one errata
is now available. It includes one version update.
Description:
This pigz update to version 2.1.6 includes a security fix
and several bug fixes:
* fix temporary file permission bug (bnc#803933,
CVE-2013-0296)
* fix dictzip with #CPU == 1 (bnc#597756)
Security Issue reference:
* CVE-2013-0296
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0296
>
Patch Instructions:
To install this SUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- SUSE Studio Onsite 1.3:
zypper in -t patch slestso13-pigz-7838
To bring your system up-to-date, use "zypper patch".
Package List:
- SUSE Studio Onsite 1.3 (x86_64) [New Version: 2.1.6]:
pigz-2.1.6-0.8.1
References:
http://support.novell.com/security/cve/CVE-2013-0296.html
https://bugzilla.novell.com/597756
https://bugzilla.novell.com/803933
http://download.novell.com/patch/finder/?keywords=041a111ad6c334270d3aa6b836278738
More information about the sle-security-updates
mailing list