Zwei Probleme in php-geshi
ID: | FEDORA-2013-5472 |
Distribution: | Fedora |
Plattformen: | Fedora 18 |
Datum: | Di, 14. Mai 2013, 08:00 |
Referenzen: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3521
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3522 |
Applikationen: | GeSHi |
Originalnachricht |
|
Name : php-geshi Product : Fedora 18 Version : 1.0.8.11 Release : 3.fc18 URL : http://qbnz.com/highlighter/ Summary : Generic syntax highlighter Description : GeSHi aims to be a simple but powerful highlighting class, with the following goals: * Support for a wide range of popular languages * Easy to add a new language for highlighting * Highly customisable output formats -------------------------------------------------------------------------------- Update Information: Update to 1.0.8.11 : - Fix for CVE-2012-3521 : Remote directory traversal and information disclosure (local file inclusion) in the contrib module. - Fix for CVE-2012-3522 : Non-persistent XSS in langwiz contrib script. -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 10 2013 Xavier Bachelot |