Nom du paquet
clutter
Date
2013-10-18
Advisory ID
MDVSA-2013:255
Affected versions
MBS1 x86_64

Problem description

Updated clutter packages fix security vulnerability:

A security flaw was found in the way Clutter, an open source software
library for creating rich graphical user interfaces, used to manage
translation of hierarchy events in certain circumstances (when
underlying device disappeared, causing XIQueryDevice query to throw
an error). Physically proximate attackers could use this flaw for
example to obtain unauthorized access to gnome-shell session right
after system resume (due to gnome-shell crash) (CVE-2013-2190).

Updated packages

MBS1 x86_64

 d25860befebb1193c308880fcc47e572  mbs1/x86_64/clutter-i18n-1.10.8-1.mbs1.noarch.rpm
 7eb9d47ddc17dd4c18a6788ab921cda7  mbs1/x86_64/lib64clutter1.0_0-1.10.8-1.mbs1.x86_64.rpm
 fdcfa87955b4f8f4cb035debe863e3ab  mbs1/x86_64/lib64clutter1.0-devel-1.10.8-1.mbs1.x86_64.rpm
 c61d06394b0885c965d9024779155d35  mbs1/x86_64/lib64clutter-gir1.0-1.10.8-1.mbs1.x86_64.rpm 
 3f137a1ed96216510b202a37b82c6245  mbs1/SRPMS/clutter-1.10.8-1.mbs1.src.rpm

References