[SECURITY] Fedora 11 Update: python-markdown2-1.0.1.15-1.fc11

updates at fedoraproject.org updates at fedoraproject.org
Tue Oct 27 07:21:12 UTC 2009


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2009-10329
2009-10-09 02:20:39
--------------------------------------------------------------------------------

Name        : python-markdown2
Product     : Fedora 11
Version     : 1.0.1.15
Release     : 1.fc11
URL         : http://code.google.com/p/python-markdown2/
Summary     : A fast and complete Python implementation of Markdown
Description :
Markdown is a text-to-HTML filter; it translates an easy-to-read /
easy-to-write structured text format into HTML. Markdown's text format
is most similar to that of plain text email, and supports features
such as headers, emphasis, code blocks, blockquotes, and links.

This is a fast and complete Python implementation of the Markdown
spec.

For information about markdown itself, see
http://daringfireball.net/projects/markdown/

--------------------------------------------------------------------------------
Update Information:

Update from 1.0.1.11 to 1.0.1.15, which fixes some issues, including these two
security-related bugs:  - [Issue 30] Fix a possible XSS via JavaScript injection
in a carefully crafted image reference (usage of double-quotes in the URL).  -
[Issue 29] Fix security hole in the md5-hashing scheme for handling HTML chunks
during processing.    See http://code.google.com/p/python-
markdown2/source/browse/trunk/CHANGES.txt for the full changelog.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Oct  8 2009 Thomas Moschny <thomas.moschny at gmx.de> - 1.0.1.15-1
- Update to 1.0.1.15. Fixes three issues, two of them being
  security-related.
* Wed Sep  2 2009 Thomas Moschny <thomas.moschny at gmx.de> - 1.0.1.13-3
- Patch syntax_color test case for older pygments version on rhel.
* Sun Jul 26 2009 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.0.1.13-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
* Sat Jul 11 2009 Thomas Moschny <thomas.moschny at gmx.de> - 1.0.1.13-1
- Update to 1.0.1.13.
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update python-markdown2' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------




More information about the package-announce mailing list