Fwd: Fedora Insight weekly Meeting
Paul W. Frields
stickster at gmail.com
Thu May 20 18:30:28 UTC 2010
On Thu, May 20, 2010 at 11:20:37AM -0700, Robyn Bergeron wrote:
> Fyi - from drak, he accidentally only replied to me.
Thanks for sending this on, Robyn!
> ---------- Forwarded message ----------
> > * The Zikula 1.2.2 that I believe we're running has vulnerabilities.
> > Despite the fact that 1.2.3 has bundled library problems, FESCo is
> > OK with using it temporarily while we await the 1.3 release, since
> > upstream is committed to fixing the bundled libs. (stickster,
> > 18:24:26)
>
>
> What are these? I thought we already had this solved since 1.2.1?
Drak, here is the full ticket explanation in FESCo's Trac instance:
https://fedorahosted.org/fesco/ticket/375
Take a look at that, and you might want to touch base with Zikula's
security team to see if they've been notified about the Bugzillas to
which that ticket alludes.
--
Paul W. Frields http://paul.frields.org/
gpg fingerprint: 3DA6 A0AC 6D58 FEC4 0233 5906 ACDB C937 BD11 3717
http://redhat.com/ - - - - http://pfrields.fedorapeople.org/
Where open source multiplies: http://opensource.com
More information about the logistics
mailing list