-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-3383 2009-04-06 19:53:13 --------------------------------------------------------------------------------
Name : mapserver Product : Fedora 9 Version : 5.2.2 Release : 1.fc9 URL : http://mapserver.gis.umn.edu Summary : Environment for building spatially-enabled internet applications Description : Mapserver is an internet mapping program that converts GIS data to map images in real time. With appropriate interface pages, Mapserver can provide an interactive internet map based on custom GIS data. -------------------------------------------------------------------------------- Update Information: The releases contain fixes for issues discovered in an audit of the CGI by a 3rd party (tickets #2939, #2941, #2942, #2943 and #2944). The issues are detailed at: http://trac.osgeo.org/mapserver/ticket/2939 http://trac.osgeo.org/mapserver/ticket/2941 http://trac.osgeo.org/mapserver/ticket/2942 http://trac.osgeo.org/mapserver/ticket/2943 http://trac.osgeo.org/mapserver/ticket/2944 Also provided is support for RFC-56 that addresses tightening up the control of access to mapfiles and templates: http://mapserver.org/development/rfc/ms-rfc-56.html -------------------------------------------------------------------------------- ChangeLog: * Sun Apr 5 2009 Devrim GUNDUZ <dev...@commandprompt.com> - 5.2.2-1 - Update to 5.2.2 which fixes : CVE-2009-0839, CVE-2009-0840, CVE-2009-0841, CVE-2009-0842, CVE-2009-0843, CVE-2009-1176, CVE-2009-1177. * Sat Jul 5 2008 Balint Cristian <re...@rdsor.ro> 5.0.3-3 - address bz#453925 * Thu Jun 26 2008 Devrim GUNDUZ <dev...@commandprompt.com> - 5.0.3-2 - Rebuilt against Geos 3.0.0 * Thu Jun 12 2008 Balint Cristian <re...@rdsor.ro> 5.0.3-1 - update to 5.0.3 bugfix release - fix some rpmlint warnings -------------------------------------------------------------------------------- References: [ 1 ] Bug #493364 - mapserver: multiple security fixes in 5.2.2 and 4.10.4 (CVE-2009-0839, CVE-2009-0840, CVE-2009-0841, CVE-2009-0842, CVE-2009-0843, CVE-2009-1176, CVE-2009-1177) https://bugzilla.redhat.com/show_bug.cgi?id=493364 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update mapserver' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at http://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ Fedora-package-announce mailing list Fedora-package-announce@redhat.com http://www.redhat.com/mailman/listinfo/fedora-package-announce