Login
Login-Name Passwort


 
Newsletter
Werbung

Sicherheit: Ausführen beliebiger Kommandos in php-doctrine-common
Aktuelle Meldungen Distributionen
Name: Ausführen beliebiger Kommandos in php-doctrine-common
ID: FEDORA-2016-8dc0af2c29
Distribution: Fedora
Plattformen: Fedora 23
Datum: Di, 2. August 2016, 08:41
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5723

Originalnachricht

Name        : php-doctrine-common
Product : Fedora 23
Version : 2.5.3
Release : 1.fc23
URL : https://github.com/doctrine/common
Summary : Common library for Doctrine projects
Description :
The Doctrine Common project is a library that provides extensions to core PHP
functionality.

Autoloader: /usr/share/php/Doctrine/Common/autoload.php

-------------------------------------------------------------------------------
-
Update Information:

### v2.5.3 #### Bug-fixes - \#367: Fix how namespace matching happens in
SymfonyFileLocator ### v2.5.2 #### Bug-fixes - DCOM-299 #383 Silence chmod()
warnings - DCOM-301 #384 Fixed bug with getAllClassNames() in subdirectories -
DCOM-303 #387 Fixed fatal error in AbstractManagerRegistry #### Improvement -
DCOM-289 #373 composer: bump to PHPUnit 4.7 ### v2.5.1 -
[CVE-2015-5723](security_misconfigura
tion_vulnerability_in_various_doctrine_projects.html)
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #1347924 - CVE-2015-5723 php-doctrine-common filesystem permission
issues
https://bugzilla.redhat.com/show_bug.cgi?id=1347924
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update php-doctrine-common' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://lists.fedoraproject.org/admin/lists/package-announce@lists.fedoraproject.org
Pro-Linux
Traut euch!
Neue Nachrichten
Werbung