Описание
ELSA-2011-0025: gcc security and bug fix update (LOW)
[4.1.2-50.el5]
- fix up fastjar directory traversal bugs (CVE-2010-0831)
[4.1.2-49.el5]
- fix ICE in set_uids_in_ptset (#605803)
- fix ICE in make_rtl_for_nonlocal_decl (#582682, #508735, #503565, PR c++/33094)
- dont build gcjwebplugin (#596097)
- fix IPP handling in libgcj (#578382)
- document -print-multi-os-directory (#529659, PR other/25507)
- fix ICE in output_die with function local types (#527510, PR debug/41063)
- speed up locale::locale() ctor if _S_global hasnt been changed (#635708, PR libstdc++/40088)
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
cpp
4.1.2-50.el5
gcc
4.1.2-50.el5
gcc-c++
4.1.2-50.el5
gcc-gfortran
4.1.2-50.el5
gcc-gnat
4.1.2-50.el5
gcc-java
4.1.2-50.el5
gcc-objc
4.1.2-50.el5
gcc-objc++
4.1.2-50.el5
libgcc
4.1.2-50.el5
libgcj
4.1.2-50.el5
libgcj-devel
4.1.2-50.el5
libgcj-src
4.1.2-50.el5
libgfortran
4.1.2-50.el5
libgnat
4.1.2-50.el5
libmudflap
4.1.2-50.el5
libmudflap-devel
4.1.2-50.el5
libobjc
4.1.2-50.el5
libstdc++
4.1.2-50.el5
libstdc++-devel
4.1.2-50.el5
Oracle Linux x86_64
cpp
4.1.2-50.el5
gcc
4.1.2-50.el5
gcc-c++
4.1.2-50.el5
gcc-gfortran
4.1.2-50.el5
gcc-gnat
4.1.2-50.el5
gcc-java
4.1.2-50.el5
gcc-objc
4.1.2-50.el5
gcc-objc++
4.1.2-50.el5
libgcc
4.1.2-50.el5
libgcj
4.1.2-50.el5
libgcj-devel
4.1.2-50.el5
libgcj-src
4.1.2-50.el5
libgfortran
4.1.2-50.el5
libgnat
4.1.2-50.el5
libmudflap
4.1.2-50.el5
libmudflap-devel
4.1.2-50.el5
libobjc
4.1.2-50.el5
libstdc++
4.1.2-50.el5
libstdc++-devel
4.1.2-50.el5
Oracle Linux i386
cpp
4.1.2-50.el5
gcc
4.1.2-50.el5
gcc-c++
4.1.2-50.el5
gcc-gfortran
4.1.2-50.el5
gcc-gnat
4.1.2-50.el5
gcc-java
4.1.2-50.el5
gcc-objc
4.1.2-50.el5
gcc-objc++
4.1.2-50.el5
libgcc
4.1.2-50.el5
libgcj
4.1.2-50.el5
libgcj-devel
4.1.2-50.el5
libgcj-src
4.1.2-50.el5
libgfortran
4.1.2-50.el5
libgnat
4.1.2-50.el5
libmudflap
4.1.2-50.el5
libmudflap-devel
4.1.2-50.el5
libobjc
4.1.2-50.el5
libstdc++
4.1.2-50.el5
libstdc++-devel
4.1.2-50.el5
Связанные CVE
Связанные уязвимости
Directory traversal vulnerability in the extract_jar function in jartool.c in FastJar 0.98 allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in a non-initial pathname component in a filename within a .jar archive, a related issue to CVE-2005-1080. NOTE: this vulnerability exists because of an incomplete fix for CVE-2006-3619.
Directory traversal vulnerability in the extract_jar function in jartool.c in FastJar 0.98 allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in a non-initial pathname component in a filename within a .jar archive, a related issue to CVE-2005-1080. NOTE: this vulnerability exists because of an incomplete fix for CVE-2006-3619.
Directory traversal vulnerability in the extract_jar function in jartool.c in FastJar 0.98 allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in a non-initial pathname component in a filename within a .jar archive, a related issue to CVE-2005-1080. NOTE: this vulnerability exists because of an incomplete fix for CVE-2006-3619.
Directory traversal vulnerability in the extract_jar function in jarto ...
Absolute path traversal vulnerability in the extract_jar function in jartool.c in FastJar 0.98 allows remote attackers to create or overwrite arbitrary files via a full pathname for a file within a .jar archive, a related issue to CVE-2010-0831. NOTE: this vulnerability exists because of an incomplete fix for CVE-2006-3619.