Ausführen beliebiger Kommandos in rest
ID: | FEDORA-2015-4596 |
Distribution: | Fedora |
Plattformen: | Fedora 21 |
Datum: | So, 19. April 2015, 01:03 |
Referenzen: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2675 |
Applikationen: | rest |
Originalnachricht |
|
Name : rest Product : Fedora 21 Version : 0.7.93 Release : 1.fc21 URL : http://www.gnome.org Summary : A library for access to RESTful web services Description : This library was designed to make it easier to access web services that claim to be "RESTful". A RESTful service should have urls that represent remote objects, which methods can then be called on. The majority of services don't actually adhere to this strict definition. Instead, their RESTful end point usually has an API that is just simpler to use compared to other types of APIs they may support (XML-RPC, for instance). It is this kind of API that this library is attempting to support. -------------------------------------------------------------------------------- Update Information: CVE-2015-2675 rest: memory corruption when using oauth because of implicit declaration of rest_proxy_call_get_url -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 18 2015 Kalev Lember |