Fwd: Fedora Insight weekly Meeting
Paul W. Frields
stickster at gmail.com
Thu May 20 18:30:28 UTC 2010
On Thu, May 20, 2010 at 11:20:37AM -0700, Robyn Bergeron wrote:
> Fyi - from drak, he accidentally only replied to me.
Thanks for sending this on, Robyn!
> ---------- Forwarded message ----------
> > * The Zikula 1.2.2 that I believe we're running has vulnerabilities.
> > Despite the fact that 1.2.3 has bundled library problems, FESCo is
> > OK with using it temporarily while we await the 1.3 release, since
> > upstream is committed to fixing the bundled libs. (stickster,
> > 18:24:26)
> What are these? I thought we already had this solved since 1.2.1?
Drak, here is the full ticket explanation in FESCo's Trac instance:
Take a look at that, and you might want to touch base with Zikula's
security team to see if they've been notified about the Bugzillas to
which that ticket alludes.
Paul W. Frields http://paul.frields.org/
gpg fingerprint: 3DA6 A0AC 6D58 FEC4 0233 5906 ACDB C937 BD11 3717
http://redhat.com/ - - - - http://pfrields.fedorapeople.org/
Where open source multiplies: http://opensource.com
More information about the logistics