Login
Newsletter
Werbung

Sicherheit: Preisgabe von Informationen in php-sabredav-Sabre_DAV
Aktuelle Meldungen Distributionen
Name: Preisgabe von Informationen in php-sabredav-Sabre_DAV
ID: FEDORA-2013-7285
Distribution: Fedora
Plattformen: Fedora 17
Datum: So, 12. Mai 2013, 10:28
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1939
Applikationen: php-sabredav-Sabre_DAV

Originalnachricht

Name        : php-sabredav-Sabre_DAV
Product : Fedora 17
Version : 1.6.5
Release : 5.fc17
URL : http://code.google.com/p/sabredav
Summary : Sabre_DAV is a WebDAV framework for PHP
Description :
SabreDAV allows you to easily add WebDAV support to a PHP application. SabreDAV
is meant to cover the entire standard.

-------------------------------------------------------------------------------
-
Update Information:

Fixes archives/files problem
This update patches the problem in the browser plugin for sabredav.
This update patches the problem in the browser plugin for sabredav.
This update patches the problem in the browser plugin for sabredav.
This update patches the problem in the browser plugin for sabredav.
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #951562 - CVE-2013-1939 php-sabredav-Sabre_DAV: Local file exposure
due improper icons / images path checking in the HTML Browser plug-in
https://bugzilla.redhat.com/show_bug.cgi?id=951562
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update php-sabredav-Sabre_DAV' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung