Login
Newsletter
Werbung

Sicherheit: Ausführen beliebiger Kommandos in mapserver
Aktuelle Meldungen Distributionen
Name: Ausführen beliebiger Kommandos in mapserver
ID: FEDORA-2021-faab70f09a
Distribution: Fedora
Plattformen: Fedora 33
Datum: Do, 3. Juni 2021, 07:21
Referenzen: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32062
Applikationen: MapServer

Originalnachricht

-------------------------------------------------------------------------------
-
Fedora Update Notification
FEDORA-2021-faab70f09a
2021-06-03 01:00:28.778056
-------------------------------------------------------------------------------
-

Name : mapserver
Product : Fedora 33
Version : 7.4.5
Release : 1.fc33
URL : http://www.mapserver.org
Summary : Environment for building spatially-enabled internet applications
Description :
Mapserver is an internet mapping program that converts GIS data to
map images in real time. With appropriate interface pages,
Mapserver can provide an interactive internet map based on
custom GIS data.

-------------------------------------------------------------------------------
-
Update Information:

Update to 7.4.5.
-------------------------------------------------------------------------------
-
ChangeLog:

* Tue May 25 2021 Sandro Mani <manisandro@gmail.com> - 7.4.5-1
- Update to 7.4.5
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #1957873 - CVE-2021-32062 mapserver: flaw in CGI mapfile loading
that makes it possible to bypass security controls [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1957873
-------------------------------------------------------------------------------
-

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-faab70f09a' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung