drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Denial of Service in python-feedparser
| Name: |
Denial of Service in python-feedparser |
|
| ID: |
FEDORA-2012-10550 |
|
| Distribution: |
Fedora |
|
| Plattformen: |
Fedora 16 |
|
| Datum: |
Mo, 6. August 2012, 21:08 |
|
| Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2921 |
|
Originalnachricht |
Name : python-feedparser
Product : Fedora 16
Version : 5.1.2
Release : 1.fc16
URL : http://feedparser.org/
Summary : Parse RSS and Atom feeds in Python
Description :
Universal Feed Parser is a Python module for downloading and parsing
syndicated feeds. It can handle RSS 0.90, Netscape RSS 0.91,
Userland RSS 0.91, RSS 0.92, RSS 0.93, RSS 0.94, RSS 1.0, RSS 2.0,
Atom 0.3, Atom 1.0, and CDF feeds. It also parses several popular extension
modules, including Dublin Core and Apple's iTunes extensions.
-------------------------------------------------------------------------------
-
Update Information:
backport F17 fix - CVE-2012-2921
-------------------------------------------------------------------------------
-
ChangeLog:
* Tue Jul 10 2012 Haïkel Guémar <hguemar@fedoraproject.org> - 5.1.2-1
- backport F17 fix from mschwendt
- 5.1.2 fixes CVE-2012-2921
(DoS via memory consumption processing ENTITY declarations).
- Update to 5.1.2 and its security fix (#787401).
- Ignore testsuite results for now (#787401).
- Set PYTHONPATH in %check section to include files in %buildroot.
- Drop CFLAGS usage from spec file, because this is Python.
* Sat Jan 14 2012 Fedora Release Engineering
<rel-eng@lists.fedoraproject.org> - 5.0.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
-------------------------------------------------------------------------------
-
References:
[ 1 ] Bug #787401 - 5.1 has been released
https://bugzilla.redhat.com/show_bug.cgi?id=787401
-------------------------------------------------------------------------------
-
This update can be installed with the "yum" update program. Use
su -c 'yum update python-feedparser' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|
