Login
Newsletter
Werbung

Sicherheit: Pufferüberlauf in clearsilver
Aktuelle Meldungen Distributionen
Name: Pufferüberlauf in clearsilver
ID: FEDORA-2011-17040
Distribution: Fedora
Plattformen: Fedora 15
Datum: Fr, 23. Dezember 2011, 08:09
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4357
Applikationen: clearsilver

Originalnachricht

Name        : clearsilver
Product : Fedora 15
Version : 0.10.5
Release : 15.fc15
URL : http://www.clearsilver.net/
Summary : Fast and powerful HTML templating system
Description :
ClearSilver is a fast, powerful, and language-neutral HTML template
system. In both static content sites and dynamic HTML applications,
it provides a separation between presentation code and application
logic which makes working with your project easier. The design of
ClearSilver began in 1999, and evolved during its use at onelist.com,
egroups.com, and Yahoo! Groups. Today many other projects and
websites are using it.

-------------------------------------------------------------------------------
-
Update Information:

CVE-2011-4357
-------------------------------------------------------------------------------
-
ChangeLog:

* Mon Dec 12 2011 Jon Ciesla <limburgher@gmail.com> - 0.10.5-15
- Patch for CVE-2011-4357, BZ 757543.
* Fri Jun 17 2011 Marcela Mašláňová <mmaslano@redhat.com> - 0.10.5-14
- Perl mass rebuild
* Fri Jun 10 2011 Marcela Mašláňová <mmaslano@redhat.com> - 0.10.5-13
- Perl 5.14 mass rebuild
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #757543 - clearsilver (neo_cgi): Format string flaw by processing
CGI error messages in Python module [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=757543
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update clearsilver' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Pro-Linux
Traut euch!
Neue Nachrichten
Werbung