--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2013-5643
2013-05-02 19:05:12
--------------------------------------------------------------------------------
Name : php-sabredav-Sabre_DAV
Product : Fedora EPEL 6
Version : 1.6.5
Release : 5.el6
URL :
http://code.google.com/p/sabredav
Summary : Sabre_DAV is a WebDAV framework for PHP
Description :
SabreDAV allows you to easily add WebDAV support to a PHP application. SabreDAV
is meant to cover the entire standard.
--------------------------------------------------------------------------------
Update Information:
Fixes archives/files problem
This update patches the problem in the browser plugin for sabredav.
This update patches the problem in the browser plugin for sabredav.
This update patches the problem in the browser plugin for sabredav.
This update patches the problem in the browser plugin for sabredav.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #951562 - CVE-2013-1939 php-sabredav-Sabre_DAV: Local file exposure due
improper icons / images path checking in the HTML Browser plug-in
https://bugzilla.redhat.com/show_bug.cgi?id=951562
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update php-sabredav-Sabre_DAV' at the command line.
For more information, refer to "Managing Software with yum",
available at
http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------