Ausführen beliebiger Kommandos in php-horde-Horde-Data
ID: | FEDORA-2020-0248ad925e |
Distribution: | Fedora |
Plattformen: | Fedora 30 |
Datum: | Fr, 14. Februar 2020, 07:24 |
Referenzen: | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8518 |
Applikationen: | Horde Application Framework |
Originalnachricht |
|
-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2020-0248ad925e 2020-02-14 01:11:33.424062 -------------------------------------------------------------------------------- Name : php-horde-Horde-Data Product : Fedora 30 Version : 2.1.5 Release : 1.fc30 URL : http://pear.horde.org Summary : Horde Data API Description : A data import and export API, with backends for: * CSV * TSV * iCalendar * vCard * vNote * vTodo -------------------------------------------------------------------------------- Update Information: **Horde_Data 2.1.5** * [jan] Fix Remote Code Execution vulnerability (CVE-2020-8518, Reported by: Andrea Cardaci/SSD). -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 5 2020 Remi Collet |