drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Ausführen beliebiger Kommandos in Cobbler
| Name: |
Ausführen beliebiger Kommandos in Cobbler |
|
| ID: |
FEDORA-2014-8561 |
|
| Distribution: |
Fedora |
|
| Plattformen: |
Fedora 20 |
|
| Datum: |
Mo, 28. Juli 2014, 07:58 |
|
| Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3225 |
|
| Applikationen: |
Cobbler |
|
Originalnachricht |
Name : cobbler
Product : Fedora 20
Version : 2.6.3
Release : 1.fc20
URL : http://www.cobblerd.org/
Summary : Boot server configurator
Description :
Cobbler is a network install server. Cobbler supports PXE, ISO
virtualized installs, and re-installing existing Linux machines.
The last two modes use a helper tool, 'koan', that integrates with
cobbler. There is also a web interface 'cobbler-web'. Cobbler's
advanced features include importing distributions from DVDs and rsync
mirrors, kickstart templating, integrated yum mirroring, and built-in
DHCP/DNS Management. Cobbler has a XMLRPC API for integration with
other applications.
-------------------------------------------------------------------------------
-
Update Information:
Update to 2.6.3 for CVE-2014-3225
-------------------------------------------------------------------------------
-
ChangeLog:
* Fri Jul 18 2014 Orion Poplawski <orion@cora.nwra.com> - 2.6.3-1
- Update to 2.6.3
* Wed Jul 16 2014 Orion Poplawski <orion@cora.nwra.com> - 2.6.2-1
- Update to 2.6.2
- Spec cleanup
* Tue Apr 22 2014 Orion Poplawski <orion@cora.nwra.com> - 2.4.4-1
- Update to 2.4.4
- Drop koan patch applied upstream
* Mon Apr 21 2014 Orion Poplawski <orion@cora.nwra.com> - 2.4.3-1
- Update to 2.4.3
- Add patch to fix bug #1047350
- Add requires python-simplejson and virt-install for EL5 (bug #852422)
- Use updated systemd macros (bug #850061)
- Require python-ctypes on EL5 (bug #838884)
-------------------------------------------------------------------------------
-
References:
[ 1 ] Bug #1095844 - CVE-2014-3225 cobbler: local file inclusion over remote
installs
https://bugzilla.redhat.com/show_bug.cgi?id=1095844
-------------------------------------------------------------------------------
-
This update can be installed with the "yum" update program. Use
su -c 'yum update cobbler' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|
