drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Denial of Service in ViewVC
Name: |
Denial of Service in ViewVC |
|
ID: |
FEDORA-2011-7222 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 14 |
|
Datum: |
Sa, 28. Mai 2011, 08:59 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5024 |
|
Applikationen: |
ViewVC |
|
Originalnachricht |
------------------------------------------------------------------------------- - Fedora Update Notification FEDORA-2011-7222 2011-05-19 01:37:20 ------------------------------------------------------------------------------- -
Name : viewvc Product : Fedora 14 Version : 1.1.11 Release : 1.fc14 URL : http://www.viewvc.org/ Summary : Browser interface for CVS and SVN version control repositories Description : ViewVC is a browser interface for CVS and Subversion version control repositories. It generates templatized HTML to present navigable directory, revision, and change log listings. It can display specific versions of files as well as diffs between those versions. Basically, ViewVC provides the bulk of the report-like functionality you expect out of your version control tool, but much more prettily than the average textual command-line program output.
------------------------------------------------------------------------------- - Update Information:
* security fix: remove user-reachable override of cvsdb row limit * fix broken standalone.py -c and -d options handling * add --help option to standalone.py * fix stack trace when asked to checkout a directory (issue #478) * improve memory usage and speed of revision log markup (issue #477) * fix broken annotation view in CVS keyword-bearing files (issue #479) * warn users when query results are incomplete (issue #443) * avoid parsing errors on RCS newphrases in the admin section (issue #483) * make rlog parsing code more robust in certain error cases (issue #444) ------------------------------------------------------------------------------- - ChangeLog:
* Wed May 18 2011 Bojan Smojver <bojan@rexursive.com> - 1.1.11-1 - bump up to 1.1.11 * Wed Mar 16 2011 Bojan Smojver <bojan@rexursive.com> - 1.1.10-1 - bump up to 1.1.10 * Mon Feb 21 2011 Bojan Smojver <bojan@rexursive.com> - 1.1.9-1 - bump up to 1.1.9 * Mon Dec 6 2010 Bojan Smojver <bojan@rexursive.com> - 1.1.8-1 - bump up to 1.1.8 ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #706274 - CVE-2009-5024 viewvc: remote user can cause excessive CPU usage and memory consumption https://bugzilla.redhat.com/show_bug.cgi?id=706274 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update viewvc' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|