Login
Newsletter
Werbung

Sicherheit: Zwei Probleme in DokuWiki
Aktuelle Meldungen Distributionen
Name: Zwei Probleme in DokuWiki
ID: FEDORA-2012-6628
Distribution: Fedora
Plattformen: Fedora 16
Datum: So, 27. Mai 2012, 09:31
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2128
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2129
Applikationen: DokuWiki

Originalnachricht

Name        : dokuwiki
Product : Fedora 16
Version : 0
Release : 0.10.20110525.a.fc16
URL : http://www.dokuwiki.org/dokuwiki
Summary : Standards compliant simple to use wiki
Description :
DokuWiki is a standards compliant, simple to use Wiki, mainly aimed at creating
documentation of any kind. It has a simple but powerful syntax which makes sure
the datafiles remain readable outside the Wiki and eases the creation of
structured texts.

All data is stored in plain text files no database is required.

-------------------------------------------------------------------------------
-
Update Information:

Fix XSS Flaw
-------------------------------------------------------------------------------
-
ChangeLog:

* Tue Apr 24 2012 Andrew Colin Kissa <andrew@topdog.za.net> -
0-0.10.20110525.a
- Fix CVE-2012-2129
- Fix Bugzilla bugs #815123
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #815122 - CVE-2012-2128 CVE-2012-2129 dokuwiki: XSS and CSRF due
improper escaping of 'target' parameter in preprocessing edit form data
https://bugzilla.redhat.com/show_bug.cgi?id=815122
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update dokuwiki' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung