drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Cross-Site Scripting in ocsinventory
| Name: |
Cross-Site Scripting in ocsinventory |
|
| ID: |
FEDORA-2014-8227 |
|
| Distribution: |
Fedora |
|
| Plattformen: |
Fedora 20 |
|
| Datum: |
Sa, 19. Juli 2014, 09:31 |
|
| Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4722 |
|
| Applikationen: |
OCS Inventory NG |
|
Originalnachricht |
Name : ocsinventory
Product : Fedora 20
Version : 2.0.5
Release : 8.fc20
URL : http://www.ocsinventory-ng.org/
Summary : Open Computer and Software Inventory Next Generation
Description :
Open Computer and Software Inventory Next Generation is an application
designed to help a network or system administrator keep track of the
computers configuration and software that are installed on the network.
OCS Inventory is also able to detect all active devices on your network,
such as switch, router, network printer and unattended devices.
OCS Inventory NG includes package deployment feature on client computers.
ocsinventory is a meta-package that will install the communication server,
the administration console and the database server (MySQL).
-------------------------------------------------------------------------------
-
Update Information:
Upstream XSS security fix for CVE-2014-4722
-------------------------------------------------------------------------------
-
ChangeLog:
* Wed Jul 9 2014 Remi Collet <remi@fedoraproject.org> - 2.0.5-8
- XSS security fix for CVE-2014-4722
-------------------------------------------------------------------------------
-
References:
[ 1 ] Bug #1117205 - CVE-2014-4722 ocsinventory: multiple stored XSS
vulnerabilities
https://bugzilla.redhat.com/show_bug.cgi?id=1117205
-------------------------------------------------------------------------------
-
This update can be installed with the "yum" update program. Use
su -c 'yum update ocsinventory' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|
