-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-3357 2009-04-06 19:52:47 --------------------------------------------------------------------------------
Name : mapserver Product : Fedora 10 Version : 5.2.2 Release : 1.fc10 URL : http://mapserver.gis.umn.edu Summary : Environment for building spatially-enabled internet applications Description : Mapserver is an internet mapping program that converts GIS data to map images in real time. With appropriate interface pages, Mapserver can provide an interactive internet map based on custom GIS data. -------------------------------------------------------------------------------- Update Information: The releases contain fixes for issues discovered in an audit of the CGI by a 3rd party (tickets #2939, #2941, #2942, #2943 and #2944). The issues are detailed at: http://trac.osgeo.org/mapserver/ticket/2939 http://trac.osgeo.org/mapserver/ticket/2941 http://trac.osgeo.org/mapserver/ticket/2942 http://trac.osgeo.org/mapserver/ticket/2943 http://trac.osgeo.org/mapserver/ticket/2944 Also provided is support for RFC-56 that addresses tightening up the control of access to mapfiles and templates: http://mapserver.org/development/rfc/ms-rfc-56.html -------------------------------------------------------------------------------- ChangeLog: * Sun Apr 5 2009 Devrim GUNDUZ <[email protected]> - 5.2.2-1 - Update to 5.2.2 which fixes : CVE-2009-0839, CVE-2009-0840, CVE-2009-0841, CVE-2009-0842, CVE-2009-0843, CVE-2009-1176, CVE-2009-1177. * Sun Dec 7 2008 Balint Cristian <[email protected]> 5.2.1-2 - enable agg render engine - enable fribidi renderer - build require agg-devel fribidi-devel * Mon Dec 1 2008 Balint Cristian <[email protected]> 5.2.1-1 - new stable upstream * Sat Nov 29 2008 Ignacio Vazquez-Abrams <[email protected]> - 5.2.0-2 - Rebuild for Python 2.6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #493364 - mapserver: multiple security fixes in 5.2.2 and 4.10.4 (CVE-2009-0839, CVE-2009-0840, CVE-2009-0841, CVE-2009-0842, CVE-2009-0843, CVE-2009-1176, CVE-2009-1177) https://bugzilla.redhat.com/show_bug.cgi?id=493364 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update mapserver' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at http://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ Fedora-package-announce mailing list [email protected] http://www.redhat.com/mailman/listinfo/fedora-package-announce
