Login
Newsletter
Werbung

Sicherheit: Ausführen beliebiger Kommandos in drupal6-flag
Aktuelle Meldungen Distributionen
Name: Ausführen beliebiger Kommandos in drupal6-flag
ID: FEDORA-2015-0072
Distribution: Fedora
Plattformen: Fedora 20
Datum: Mi, 14. Januar 2015, 10:43
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3453
Applikationen: Drupal

Originalnachricht

Name        : drupal6-flag
Product : Fedora 20
Version : 2.1
Release : 3.fc20
URL : http://drupal.org/project/flag
Summary : Create customized flags that users can set on content
Description :
Flag is a flexible flagging system that is completely customizable by the
administrator. Using this module, the site administrator can provide any
number of flags for nodes, comments, users, and any other type of entity.
Some possibilities include bookmarks, marking important, friends, or flag
as offensive. With extensive views integration, you can create custom
lists of popular content or keep tabs on important content.

This package provides the following Drupal modules:
* flag
* flag_actions

-------------------------------------------------------------------------------
-
Update Information:

CVE-2014-3453

* https://access.redhat.com/security/cve/CVE-2014-3453
* http://www.openwall.com/lists/oss-security/2014/05/12/2
-------------------------------------------------------------------------------
-
ChangeLog:

* Wed Dec 31 2014 Shawn Iwinski <shawn.iwinski@gmail.com> - 2.1-3
- CVE-2014-3453 (BZ #1096604, #1096607)
- Spec cleanup
- %license usage
* Sat Jun 7 2014 Fedora Release Engineering
<rel-eng@lists.fedoraproject.org> - 2.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #1096604 - CVE-2014-3453 drupal6-flag: code execution flaw in flag
importer
https://bugzilla.redhat.com/show_bug.cgi?id=1096604
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update drupal6-flag' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung