[SECURITY] Fedora EPEL 6 Update: php-sabredav-Sabre_DAV-1.6.5-5.el6
updates at fedoraproject.org
updates at fedoraproject.org
Fri May 24 19:09:49 UTC 2013
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2013-5643
2013-05-02 19:05:12
--------------------------------------------------------------------------------
Name : php-sabredav-Sabre_DAV
Product : Fedora EPEL 6
Version : 1.6.5
Release : 5.el6
URL : http://code.google.com/p/sabredav
Summary : Sabre_DAV is a WebDAV framework for PHP
Description :
SabreDAV allows you to easily add WebDAV support to a PHP application. SabreDAV
is meant to cover the entire standard.
--------------------------------------------------------------------------------
Update Information:
Fixes archives/files problem
This update patches the problem in the browser plugin for sabredav.
This update patches the problem in the browser plugin for sabredav.
This update patches the problem in the browser plugin for sabredav.
This update patches the problem in the browser plugin for sabredav.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #951562 - CVE-2013-1939 php-sabredav-Sabre_DAV: Local file exposure due improper icons / images path checking in the HTML Browser plug-in
https://bugzilla.redhat.com/show_bug.cgi?id=951562
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update php-sabredav-Sabre_DAV' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the epel-package-announce
mailing list