drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Zwei Probleme in tika
Name: |
Zwei Probleme in tika |
|
ID: |
FEDORA-2018-639385f5ec |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 28 |
|
Datum: |
Sa, 28. April 2018, 14:15 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4434
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6809 |
|
Applikationen: |
Apache Tika |
|
Originalnachricht |
------------------------------------------------------------------------------- - Fedora Update Notification FEDORA-2018-639385f5ec 2018-04-27 23:05:32.367776 ------------------------------------------------------------------------------- -
Name : tika Product : Fedora 28 Version : 1.17 Release : 1.fc28 URL : http://tika.apache.org/ Summary : A content analysis toolkit Description : The Apache Tika toolkit detects and extracts meta-data and structured text content from various documents using existing parser libraries.
------------------------------------------------------------------------------- - Update Information:
Update to newer release of Tika including security fixes for CVE-2016-4434 and CVE-2016-6809. ------------------------------------------------------------------------------- - ChangeLog:
* Thu Apr 19 2018 Mat Booth <mat.booth@redhat.com> - 1.17-1 - Update to latest upstream release * Thu Apr 19 2018 Mat Booth <mat.booth@redhat.com> - 1.12-6 - Drop uneeded dep on CXF ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #1394156 - CVE-2016-6809 tika: Native deserialization of Java objects in matlab files https://bugzilla.redhat.com/show_bug.cgi?id=1394156 [ 2 ] Bug #1340386 - CVE-2016-4434 tika: XML External Entity vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=1340386 ------------------------------------------------------------------------------- -
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2018-639385f5ec' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
|
|
|
|