Login
Newsletter
Werbung

Sicherheit: Preisgabe von Informationen in php-sabredav-Sabre_DAV
Aktuelle Meldungen Distributionen
Name: Preisgabe von Informationen in php-sabredav-Sabre_DAV
ID: FEDORA-2013-7289
Distribution: Fedora
Plattformen: Fedora 18
Datum: So, 12. Mai 2013, 10:29
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1939
Applikationen: php-sabredav-Sabre_DAV

Originalnachricht

Name        : php-sabredav-Sabre_DAV
Product : Fedora 18
Version : 1.6.5
Release : 5.fc18
URL : http://code.google.com/p/sabredav
Summary : Sabre_DAV is a WebDAV framework for PHP
Description :
SabreDAV allows you to easily add WebDAV support to a PHP application. SabreDAV
is meant to cover the entire standard.

-------------------------------------------------------------------------------
-
Update Information:

Fixes archives/files problem
This update patches the problem in the browser plugin for sabredav.
This update patches the problem in the browser plugin for sabredav.
This update patches the problem in the browser plugin for sabredav.
This update patches the problem in the browser plugin for sabredav.
-------------------------------------------------------------------------------
-
ChangeLog:

* Wed May 1 2013 Joseph Marrero <jmarrero@fedoraproject.org> - 1.6.5-5
- Fix problem with checksum whitout braking the files installed
* Sun Apr 28 2013 Joseph Marrero <jmarrero@fedoraproject.org> - 1.6.5-4
- added security patch that fixes bugs 951568 951569 951562
- added --ignore-erros flag to pear install macro to accept the patch
* Sat Mar 2 2013 Joseph Marrero <jmarrero@fedoraproject.org> - 1.6.5-3
- Fix cleanup in rhel6 and f19
* Thu Feb 14 2013 Fedora Release Engineering
<rel-eng@lists.fedoraproject.org> - 1.6.5-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #951562 - CVE-2013-1939 php-sabredav-Sabre_DAV: Local file exposure
due improper icons / images path checking in the HTML Browser plug-in
https://bugzilla.redhat.com/show_bug.cgi?id=951562
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update php-sabredav-Sabre_DAV' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung