--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-3ecacade34
2018-07-13 17:31:30.787174
--------------------------------------------------------------------------------
Name : xapian-core
Product : Fedora 28
Version : 1.4.6
Release : 1.fc28
URL :
http://www.xapian.org/
Summary : The Xapian Probabilistic Information Retrieval Library
Description :
Xapian is an Open Source Probabilistic Information Retrieval Library. It
offers a highly adaptable toolkit that allows developers to easily add advanced
indexing and search facilities to applications
--------------------------------------------------------------------------------
Update Information:
Update to 1.4.6, Security fix for CVE-2018-0499, fix for notmuch (Email indexer)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 3 2018 Peter Robinson <pbrobinson(a)fedoraproject.org> 1.4.6-1
- Update to 1.4.6
- CVE-2018-0499 fix (rhbz 1597583 1597585 1597586)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1597583 - CVE-2018-0499 xapian-core: Cross-site-scripting in
queryparser/termgenerator_internal.cc
https://bugzilla.redhat.com/show_bug.cgi?id=1597583
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2018-3ecacade34' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------