drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Denial of Service in python-feedparser
| Name: |
Denial of Service in python-feedparser |
|
| ID: |
FEDORA-2012-8291 |
|
| Distribution: |
Fedora |
|
| Plattformen: |
Fedora 17 |
|
| Datum: |
Fr, 1. Juni 2012, 21:09 |
|
| Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2921 |
|
Originalnachricht |
Name : python-feedparser
Product : Fedora 17
Version : 5.1.2
Release : 2.fc17
URL : http://feedparser.org/
Summary : Parse RSS and Atom feeds in Python
Description :
Universal Feed Parser is a Python module for downloading and parsing
syndicated feeds. It can handle RSS 0.90, Netscape RSS 0.91,
Userland RSS 0.91, RSS 0.92, RSS 0.93, RSS 0.94, RSS 1.0, RSS 2.0,
Atom 0.3, Atom 1.0, and CDF feeds. It also parses several popular extension
modules, including Dublin Core and Apple's iTunes extensions.
-------------------------------------------------------------------------------
-
Update Information:
Update from 5.1 to 5.1.2.
-------------------------------------------------------------------------------
-
ChangeLog:
* Wed May 23 2012 Michael Schwendt <mschwendt@fedoraproject.org> -
5.1.2-2
- Also package NEWS files as documentation.
- 5.1.2 fixes CVE-2012-2921
(DoS via memory consumption processing ENTITY declarations).
* Tue May 22 2012 Michael Schwendt <mschwendt@fedoraproject.org> -
5.1.2-1
- Update to 5.1.2 and its security fix (#787401).
- Ignore testsuite results for now (#787401).
- Set PYTHONPATH in %check section to include files in %buildroot.
- Drop CFLAGS usage from spec file, because this is Python.
-------------------------------------------------------------------------------
-
References:
[ 1 ] Bug #824600 - CVE-2012-2921 python-feedparser: DoS via memory
consumption processing ENTITY declarations
https://bugzilla.redhat.com/show_bug.cgi?id=824600
-------------------------------------------------------------------------------
-
This update can be installed with the "yum" update program. Use
su -c 'yum update python-feedparser' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|
