Sicherheit: Mangelnde Rechteprüfung in php-symfony-symfony


ID:	FEDORA-2012-8985

Distribution:	Fedora

Plattformen:	Fedora 16

Datum:	Fr, 15. Juni 2012, 15:39

Referenzen:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2667

Originalnachricht
Name : php-symfony-symfony Product : Fedora 16 Version : 1.4.18 Release : 1.fc16 URL : http://www.symfony-project.org/ Summary : Open-Source PHP Web Framework Description : Symfony is a complete framework designed to optimize the development of web applications by way of several key features. For starters, it separates a web application's business rules, server logic, and presentation views. It contains numerous tools and classes aimed at shortening the development time of a complex web application. Additionally, it automates common tasks so that the developer can focus entirely on the specifics of an application. The end result of these advantages means there is no need to reinvent the wheel every time a new web application is built! -------------------------------------------------------------------------------- Update Information: - upstream 1.4.18 - fixes: CVE-2012-2667 php-symfony-symfony: Session fixation flaw -------------------------------------------------------------------------------- ChangeLog: * Mon Jun 4 2012 Christof Damian - 1.4.18-1 - upstream 1.4.18 (security fix) * Thu Mar 8 2012 Christof Damian - 1.4.17-2 - fix doctrine path * Thu Mar 8 2012 Christof Damian - 1.4.17-1 - upstream 1.4.17 * Sat Jan 14 2012 Fedora Release Engineering - 1.4.8-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #828079 - CVE-2012-2667 php-symfony-symfony: Session fixation flaw corrected in upstream 1.4.18 version [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=828079 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update php-symfony-symfony' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce