Imlib2 1.4.1 has been released to address security vulnerabilities in the PNM and XPM image loaders which can be exploited to cause applications linked against Imlib2 to execute arbitrary code with the privileges of the user running the application (or root, if the application is setuid/setgid).
All users are encouraged to upgrade to this latest release immediately. More information on the vulnerabilities maybe found here: http://secunia.com/advisories/30401/ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2426 Users may download the appropriate source package from sourceforge.net (indirect URLs): http://downloads.sourceforge.net/enlightenment/imlib2-1.4.1-1.src.rpm http://downloads.sourceforge.net/enlightenment/imlib2-1.4.1.tar.bz2 http://downloads.sourceforge.net/enlightenment/imlib2-1.4.1.tar.gz Michael -- Michael Jennings (a.k.a. KainX) http://www.kainx.org/ <[EMAIL PROTECTED]> Linux Server/Cluster Admin, LBL.gov Author, Eterm (www.eterm.org) ----------------------------------------------------------------------- "A little learning is a dangerous thing; Drink deep, or taste not the Pierian spring: There shallow draughts intoxicate the brain, And drinking largely sobers us again." -- Alexander Pope, "An Essay on Criticism" ------------------------------------------------------------------------- Check out the new SourceForge.net Marketplace. It's the best place to buy or sell services for just about anything Open Source. http://sourceforge.net/services/buy/index.php _______________________________________________ enlightenment-users mailing list enlightenment-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/enlightenment-users