-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2008-3328 2008-04-29 20:22:20 --------------------------------------------------------------------------------
Name : moin Product : Fedora 7 Version : 1.5.9 Release : 1.fc7 URL : http://moinmoin.wikiwikiweb.de/ Summary : MoinMoin is a Python clone of WikiWiki Description : A WikiWikiWeb is a collaborative hypertext environment, with an emphasis on easy access to and modification of information. MoinMoin is a Python WikiClone that allows you to easily set up your own wiki, only requiring a Web server and a Python installation. -------------------------------------------------------------------------------- Update Information: This update fixes various security issues present in moin 1.5.8. -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 27 2008 Matthias Saou <http://freshrpms.net/> 1.5.9-1 - Update to 1.5.9, security fix release of the 1.5.x line. * Wed Feb 20 2008 Lubomir Kundrak <[EMAIL PROTECTED]> 1.5.8-4 - Fix CVE-2008-0780 XSS in login action (2f952fa361c7) - Fix CVE-2008-0781 multiple XSS in AttachFile action (db212dfc58ef) * Fri Feb 8 2008 Matthias Saou <http://freshrpms.net/> 1.5.8-3 - Include e69a16b6e630 1.5 changeset as cookieidfix (#432017). * Sun Aug 5 2007 Matthias Saou <http://freshrpms.net/> 1.5.8-2 - Update License field. -------------------------------------------------------------------------------- References: [ 1 ] Bug #438657 - CVE-2008-1099: moin ACL enforcement flaw https://bugzilla.redhat.com/show_bug.cgi?id=438657 [ 2 ] Bug #438658 - CVE-2008-1098: moin multiple XSS issues https://bugzilla.redhat.com/show_bug.cgi?id=438658 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update moin' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at http://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ Fedora-package-announce mailing list Fedora-package-announce@redhat.com http://www.redhat.com/mailman/listinfo/fedora-package-announce