Login-Name Passwort


Sicherheit: Preisgabe von Informationen in php-PHPMailer
Aktuelle Meldungen Distributionen
Name: Preisgabe von Informationen in php-PHPMailer
ID: FEDORA-2017-e2d2eadf9a
Distribution: Fedora
Plattformen: Fedora 25
Datum: Sa, 25. März 2017, 12:03
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5223


Name        : php-PHPMailer
Product : Fedora 25
Version : 5.2.23
Release : 1.fc25
URL : https://github.com/PHPMailer/PHPMailer
Summary : PHP email transport class with a lot of features
Description :
Full Featured Email Transfer Class for PHP. PHPMailer features:

* Supports emails digitally signed with S/MIME encryption!
* Supports emails with multiple TOs, CCs, BCCs and REPLY-TOs
* Works on any platform.
* Supports Text & HTML emails.
* Embedded image support.
* Multipart/alternative emails for mail clients that do not read
HTML email.
* Flexible debugging.
* Custom mail headers.
* Redundant SMTP servers.
* Support for 8bit, base64, binary, and quoted-printable encoding.
* Word wrap.
* Multiple fs, string, and binary attachments (those from database,
string, etc).
* SMTP authentication.
* Tested on multiple SMTP servers: Sendmail, qmail, Postfix, Gmail,
Imail, Exchange, etc.
* Good documentation, many examples included in download.
* It's swift, small, and simple.

Update Information:

**PHPMailer 5.2.23** This is a minor maintenance release. * Improve
trapping of TLS errors during connection so that they don't cause warnings,
are reported better in debug output * Amend test suite so it uses PHPUnit
version 4.8, compatible with older versions of PHP, instead of teh version
supplied by Travis-CI * This forces pinning of some dev packages to older
releases, but should make travis builds more reliable * Test suite now runs
on HHVM, and thus so should PHPMailer in general * Improve Czech
* Add links to CVE-2017-5223 resources

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade php-PHPMailer' at the command line.
For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Traut euch!
Neue Nachrichten