| |||||||||||||||||||
Fedora alert FEDORA-2010-0601 (php-ZendFramework)
-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2010-0601 2010-01-15 21:21:11 -------------------------------------------------------------------------------- Name : php-ZendFramework Product : Fedora 11 Version : 1.9.7 Release : 1.fc11 URL : http://framework.zend.com/ Summary : Leading open-source PHP framework Description : Extending the art & spirit of PHP, Zend Framework is based on simplicity, object-oriented best practices, corporate friendly licensing, and a rigorously tested agile codebase. Zend Framework is focused on building more secure, reliable, and modern Web 2.0 applications & web services, and consuming widely available APIs from leading vendors like Google, Amazon, Yahoo!, Flickr, as well as API providers and catalogers like StrikeIron and ProgrammableWeb. -------------------------------------------------------------------------------- Update Information: This release fixes security-related issues: * ZF2010-06: Potential XSS or HTML Injection vector in Zend_Json * ZF2010-05: Potential XSS vector in Zend_Service_ReCaptcha_MailHide * ZF2010-04: Potential MIME-type Injection in Zend_File_Transfer * ZF2010-03: Potential XSS vector in Zend_Filter_StripTags when comments allowed * ZF2010-02: Potential XSS vector in Zend_Dojo_View_Helper_Editor * ZF2010-01: Potential XSS vectors due to inconsistent encodings -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 14 2010 Alexander Kahl <akahl@imttechnologies.com> - 1.9.7-1 - update to bugfix / security release 1.9.7 * Tue Dec 8 2009 Felix Kaechele <felix@fetzig.org> - 1.9.6-2 - insert correct provides/obsoletes for tests subpackage removal * Mon Nov 30 2009 Felix Kaechele <heffer@fedoraproject.org> - 1.9.6-1 - update to 1.9.6 * Sun Nov 15 2009 Felix Kaechele <felix@fetzig.org> - 1.9.5-1 - update to 1.9.5 - removed test subpackage as it can never comply to font packaging guidelines * Wed Sep 30 2009 Felix Kaechele <heffer@fedoraproject.org> - 1.9.3-1.PL1 - new upstream version - new component: Queue - fixed dangling symlinks - enabled Db-Adapter-Firebird * Mon Jul 20 2009 Alexander Kahl <akahl@iconmobile.com> - 1.8.4-2.PL1 - removed Fileinfo dependency - don't make zf.sh symlink absolute (breaks the script) * Thu Jul 16 2009 Alexander Kahl <akahl@iconmobile.com> - 1.8.4-1.PL1 - update to 1.8.4 patch 1 (it's about time!) - Requires php 5.1.4 -> 5.2.4 - list all files explicitly for easier future updates - incubator no more (Zend_Tool stable now) - Request now part of Controller - new components: Application, CodeGenerator, Crypt, Navigation, Reflection, Tag - Soap and Services require php-soap now -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update php-ZendFramework' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at http://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-... (Log in to post comments)
|
|||||||||||||||||||