--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2020-16bf726581
2020-04-20 19:49:32.355172
--------------------------------------------------------------------------------
Name : php-robrichards-xmlseclibs1
Product : Fedora EPEL 7
Version : 1.4.3
Release : 1.el7
URL :
https://github.com/robrichards/xmlseclibs
Summary : A PHP library for XML Security (version 1)
Description :
xmlseclibs is a library written in PHP for working with XML Encryption and
Signatures.
NOTE: php-mcrypt will not be automatically installed as a dependency of this
package so it will need to be "manually" installed if it is required --
specifically for the following XMLSecurityKey encryption types:
- XMLSecurityKey::AES128_CBC
- XMLSecurityKey::AES192_CBC
- XMLSecurityKey::AES256_CBC
- XMLSecurityKey::TRIPLEDES_CBC
Autoloader: /usr/share/php/robrichards-xmlseclibs/autoload.php
--------------------------------------------------------------------------------
Update Information:
## 1.4.3 (12, Nov 2019) ### Security Improvements: - Insure only a single
SignedInfo element exists within a signature during verification. Refs
[
CVE-2019-3465](https://nvd.nist.gov/vuln/detail/CVE-2019-3465).
--------------------------------------------------------------------------------
ChangeLog:
* Sun Apr 5 2020 Shawn Iwinski <shawn(a)iwin.ski> - 1.4.3-1
- Update to 1.4.3 (RHBZ #1771533, CVE-2019-3465)
-
https://nvd.nist.gov/vuln/detail/CVE-2019-3465
* Thu Jan 30 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4.2-9
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
* Fri Jul 26 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4.2-8
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
* Sat Feb 2 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4.2-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4.2-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Fri Feb 9 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4.2-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Thu Jul 27 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4.2-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Sat Feb 11 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4.2-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
* Fri Nov 25 2016 Remi Collet <remi(a)fedoraproject.org> - 1.4.2-2
- fix FTBFS, disable deprecation messages
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1771533 - php-robrichards-xmlseclibs1-1.4.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1771533
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update php-robrichards-xmlseclibs1' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7\
/html/System_Administrators_Guide/ch-yum.html
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------