Fedora alert FEDORA-2011-5180 (ikiwiki)
| From: | updates@fedoraproject.org | |
| To: | package-announce@lists.fedoraproject.org | |
| Subject: | [SECURITY] Fedora 14 Update: ikiwiki-3.20110328-1.fc14 | |
| Date: | Thu, 21 Apr 2011 22:31:19 +0000 | |
| Message-ID: | <20110421223119.1B946110C2C@bastion02.phx2.fedoraproject.org> | |
| Archive‑link: | Article |
-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2011-5180 2011-04-11 20:27:55 -------------------------------------------------------------------------------- Name : ikiwiki Product : Fedora 14 Version : 3.20110328 Release : 1.fc14 URL : http://ikiwiki.info/ Summary : A wiki compiler Description : Ikiwiki is a wiki compiler. It converts wiki pages into HTML pages suitable for publishing on a website. Ikiwiki stores pages and history in a revision control system such as Subversion or Git. There are many other features, including support for blogging, as well as a large array of plugins. -------------------------------------------------------------------------------- Update Information: Update to latest upstream version 3.20110328. Security fixes: * Possible javascript insertion via insufficient htmlscrubbing of alternate stylesheets. (CVE-2011-1401) * Javascript insertion via insufficient checking in comments. (CVE-2011-0428) See http://ikiwiki.info/news/ for the full list of changes. -------------------------------------------------------------------------------- ChangeLog: * Sun Apr 10 2011 Thomas Moschny <thomas.moschny@gmx.de> - 3.20110328-1 - Update to 3.20110328. - New BR perl(YAML). * Fri Mar 25 2011 Thomas Moschny <thomas.moschny@gmx.de> - 3.20110321-1 - Update to 3.20110321. * Wed Mar 2 2011 Thomas Moschny <thomas.moschny@gmx.de> - 3.20110225-1 - Update to 3.20110225. * Wed Feb 9 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.20110124-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild * Mon Feb 7 2011 Thomas Moschny <thomas.moschny@gmx.de> - 3.20110124-2 - Use new filtering macros for provides and requires. * Sun Feb 6 2011 Thomas Moschny <thomas.moschny@gmx.de> - 3.20110124-1 - Update to 3.20110124. * Fri Jan 7 2011 Thomas Moschny <thomas.moschny@gmx.de> - 3.20110105-1 - Update to 3.20110105. * Mon Jan 3 2011 Thomas Moschny <thomas.moschny@gmx.de> - 3.20101231-1 - Update to 3.20101231. * Sat Dec 11 2010 Thomas Moschny <thomas.moschny@gmx.de> - 3.20101201-1 - Update to 3.20101201. * Tue Nov 30 2010 Thomas Moschny <thomas.moschny@gmx.de> - 3.20101129-1 - Update to 3.20101129. * Wed Oct 27 2010 Thomas Moschny <thomas.moschny@gmx.de> - 3.20101023-1 - Update to 3.20101023. * Sat Oct 2 2010 Thomas Moschny <thomas.moschny@gmx.de> - 3.20100926-1 - Update to 3.20100926. * Thu Sep 16 2010 Thomas Moschny <thomas.moschny@gmx.de> - 3.20100915-1 - Update to 3.20100915. * Tue Sep 7 2010 Thomas Moschny <thomas.moschny@gmx.de> - 3.20100831-1 - Update to 3.20100831. * Fri Aug 27 2010 Thomas Moschny <thomas.moschny@gmx.de> - 3.20100815-1 - Update to 3.20100815. -------------------------------------------------------------------------------- References: [ 1 ] Bug #695501 - CVE-2011-1401 ikiwiki: XSS via crafted CSS token sequences https://bugzilla.redhat.com/show_bug.cgi?id=695501 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update ikiwiki' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-...