[SECURITY] Fedora 10 Update: cobbler-1.2.9-1.fc10
updates at fedoraproject.org
updates at fedoraproject.org
Sat Nov 22 17:00:17 UTC 2008
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2008-10000
2008-11-22 14:49:56
--------------------------------------------------------------------------------
Name : cobbler
Product : Fedora 10
Version : 1.2.9
Release : 1.fc10
URL : http://cobbler.et.redhat.com
Summary : Boot server configurator
Description :
Cobbler is a network boot and update server. Cobbler
supports PXE, provisioning virtualized images, and
reinstalling existing Linux machines. The last two
modes require a helper tool called 'koan' that
integrates with cobbler. Cobbler's advanced features
include importing distributions from DVDs and rsync
mirrors, kickstart templating, integrated yum
mirroring, and built-in DHCP/DNS Management. Cobbler has
a Python and XMLRPC API for integration with other
applications.
--------------------------------------------------------------------------------
Update Information:
Fixes a security vulnerability where a CobblerWeb user (if so configured) can
import a Python module via a web-edited Cheetah template and run commands as
root.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Nov 14 2008 Michael DeHaan <mdehaan at redhat.com> - 1.3.0-1
- Upstream changes (see CHANGELOG)
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update cobbler' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list