Ausführen beliebiger Kommandos in perl-Archive-Extract
ID: | FEDORA-2016-22312d8521 |
Distribution: | Fedora |
Plattformen: | Fedora 23 |
Datum: | Di, 30. August 2016, 07:41 |
Referenzen: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1238 |
Applikationen: | perl-Archive-Extract |
Originalnachricht |
|
Name : perl-Archive-Extract Product : Fedora 23 Version : 0.78 Release : 1.fc23 URL : http://search.cpan.org/dist/Archive-Extract/ Summary : Generic archive extracting mechanism Description : Archive::Extract is a generic archive extraction mechanism. It allows you to extract any archive file of the type .tar, .tar.gz, .gz, .Z, tar.bz2, .tbz, .bz2, .zip, .xz,, .txz, .tar.xz, or .lzma without having to worry how it does so, or use different interfaces for each type by using either perl modules, or command-line tools on your system. -------------------------------------------------------------------------------- Update Information: This release fixes loading optional modules from default . path as decribed in CVE-2016-1238. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1361150 - perl-Archive-Extract-0.78 is available https://bugzilla.redhat.com/show_bug.cgi?id=1361150 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update perl-Archive-Extract' at the command line. For more information, refer to "Managing Software with yum", available at https://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://lists.fedoraproject.org/admin/lists/package-announce@lists.fedoraproject.org |