[SECURITY] Fedora 25 Update: trytond-account-invoice-4.0.2-1.fc25

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2016-d961441913 2016-09-13 18:03:12.594480 -------------------------------------------------------------------------------- Name : trytond-account-invoice Product : Fedora 25 Version : 4.0.2 Release : 1.fc25 URL : http://www.tryton.org Summary : account-invoice module for Tryton Description : account-invoice module for Tryton application server. -------------------------------------------------------------------------------- Update Information: - security fix for CVE-2016-1241, CVE-2016-1242 - other bug fixes -------------------------------------------------------------------------------- References: [ 1 ] Bug #1374220 - CVE-2016-1242 tryton: admin user able to access all files on system https://bugzilla.redhat.com/show_bug.cgi?id=1374220 [ 2 ] Bug #1374172 - CVE-2016-1241 tryton: password hashes leak to authenticated users https://bugzilla.redhat.com/show_bug.cgi?id=1374172 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update trytond-account-invoice' at the command line. For more information, refer to "Managing Software with yum", available at https://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------