Fwd: Fedora Insight weekly Meeting

Paul W. Frields stickster at gmail.com
Thu May 20 18:30:28 UTC 2010

On Thu, May 20, 2010 at 11:20:37AM -0700, Robyn Bergeron wrote:
> Fyi - from drak, he accidentally only replied to me.

Thanks for sending this on, Robyn!

> ---------- Forwarded message ----------
> >  * The Zikula 1.2.2 that I believe we're running has vulnerabilities.
> >    Despite the fact that 1.2.3 has bundled library problems, FESCo is
> >    OK with using it temporarily while we await the 1.3 release, since
> >    upstream is committed to fixing the bundled libs.  (stickster,
> >    18:24:26)
> What are these?  I thought we already had this solved since 1.2.1?

Drak, here is the full ticket explanation in FESCo's Trac instance:


Take a look at that, and you might want to touch base with Zikula's
security team to see if they've been notified about the Bugzillas to
which that ticket alludes.

Paul W. Frields                                http://paul.frields.org/
  gpg fingerprint: 3DA6 A0AC 6D58 FEC4 0233  5906 ACDB C937 BD11 3717
  http://redhat.com/   -  -  -  -   http://pfrields.fedorapeople.org/
          Where open source multiplies: http://opensource.com

More information about the logistics mailing list