Login
Newsletter
Werbung

Sicherheit: Ausführen beliebiger Kommandos in php-twig-Twig
Aktuelle Meldungen Distributionen
Name: Ausführen beliebiger Kommandos in php-twig-Twig
ID: FEDORA-2013-6107
Distribution: Fedora
Plattformen: Fedora 17
Datum: So, 28. April 2013, 10:58
Referenzen: http://blog.twig.sensiolabs.org/post/47461911874/security-release-twig-1-12-3-released
Applikationen: php-twig-Twig

Originalnachricht

Name        : php-twig-Twig
Product : Fedora 17
Version : 1.12.3
Release : 1.fc17
URL : http://twig.sensiolabs.org
Summary : The flexible, fast, and secure template engine for PHP
Description :
The flexible, fast, and secure template engine for PHP.

* Fast: Twig compiles templates down to plain optimized PHP code. The
overhead compared to regular PHP code was reduced to the very minimum.

* Secure: Twig has a sandbox mode to evaluate untrusted template code. This
allows Twig to be used as a template language for applications where users
may modify the template design.

* Flexible: Twig is powered by a flexible lexer and parser. This allows the
developer to define its own custom tags and filters, and create its own
DSL.

Optional dependency: Xdebug (php-pecl-xdebug)

-------------------------------------------------------------------------------
-
Update Information:

Updated to version 1.12.3

See: security-release-twig-1-12-3-released

Full change log: https://github.com/fabpot/Twig/blob/v1.12.3/CHANGELOG
-------------------------------------------------------------------------------
-
ChangeLog:

* Thu Apr 18 2013 Shawn Iwinski <shawn.iwinski@gmail.com> 1.12.3-1
- Updated to version 1.12.3
* Tue Feb 12 2013 Shawn Iwinski <shawn.iwinski@gmail.com> 1.12.2-1
- Updated to upstream version 1.12.2
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #949867 - php-twig-Twig-1.12.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=949867
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update php-twig-Twig' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung