[SECURITY] Fedora EPEL 5 Update: phpldapadmin-1.2.2-3.gitbbedf1.el5

updates at fedoraproject.org updates at fedoraproject.org
Tue Oct 16 18:04:46 UTC 2012 

--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2012-12949
2012-09-21 20:15:14
--------------------------------------------------------------------------------

Name        : phpldapadmin
Product     : Fedora EPEL 5
Version     : 1.2.2
Release     : 3.gitbbedf1.el5
URL         : http://phpldapadmin.sourceforge.net
Summary     : Web-based tool for managing LDAP servers
Description :
PhpLDAPadmin is a web-based LDAP client.
It provides easy, anywhere-accessible, multi-language administration
for your LDAP server. Its hierarchical tree-viewer and advanced search
functionality make it intuitive to browse and administer your LDAP directory.

Since it is a web application, this LDAP browser works on many platforms,
making your LDAP server easily manageable from any location.

PhpLDAPadmin is the perfect LDAP browser for the LDAP professional
and novice alike. Its user base consists mostly of LDAP administration
professionals.

Edit /etc/phpldapadmin/config.php to change default (localhost) LDAP server
location and other things. Edit /etc/httpd/conf.d/phpldapadmin.conf to allow
access by remote web-clients.

--------------------------------------------------------------------------------
Update Information:

Upgrade to 1.2.2

This update fixes various security issues, including CVE-2012-1114/CVE-2012-1115 . 
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #799873 - CVE-2012-1114 CVE-2012-1115 phpldapadmin: XSS flaws via 'export', 'add_value_form' and 'dn' variables
        https://bugzilla.redhat.com/show_bug.cgi?id=799873
--------------------------------------------------------------------------------

This update can be installed with the "yum" update programs.  Use
su -c 'yum update phpldapadmin' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora EPEL GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

More information about the epel-package-announce mailing list