[Bug 880330] New: perl-Dancer: Newline injection due to improper CRLF escaping in cookie() and cookies() methods [fedora-all]
by Red Hat Bugzilla
Product: Fedora
https://bugzilla.redhat.com/show_bug.cgi?id=880330
Bug ID: 880330
Summary: perl-Dancer: Newline injection due to improper CRLF
escaping in cookie() and cookies() methods
[fedora-all]
Product: Fedora
Version: 17
Component: perl-Dancer
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Reporter: jlieskov(a)redhat.com
Blocks: 880329
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please use the bodhi submission link
noted in the next comment(s). This will include the bug IDs of this
tracking bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when available.
Please note: this issue affects multiple supported versions of Fedora.
Only one tracking bug has been filed; please ensure that it is only closed
when all affected versions are fixed.
[bug automatically created by: add-tracking-bugs]
--
You are receiving this mail because:
You are on the CC list for the bug.
10 years, 11 months
[Bug 838700] New: please update to new upstream version
by Red Hat Bugzilla
https://bugzilla.redhat.com/show_bug.cgi?id=838700
Bug ID: 838700
QA Contact: extras-qa(a)fedoraproject.org
Severity: low
Version: 17
Priority: unspecified
CC: perl-devel(a)lists.fedoraproject.org,
robert(a)marcanoonline.com
Assignee: robert(a)marcanoonline.com
Summary: please update to new upstream version
Regression: ---
Story Points: ---
Classification: Fedora
OS: Unspecified
Reporter: wfp5p(a)virginia.edu
Type: Bug
Documentation: ---
Hardware: Unspecified
Mount Type: ---
Status: NEW
Component: perl-Time-Period
Product: Fedora
Description of problem:
It appears that the location of upstream has changed maintainers and locations.
The current version is 1.23, which includes a few bug fixes over 1.20.
The new URL is http://search.cpan.org/dist/Time-Period/
--
You are receiving this mail because:
You are on the CC list for the bug.
10 years, 11 months