User: Password:
Subscribe / Log in / New account

perl-MARC-XML: information disclosure

Package(s):perl-MARC-XML CVE #(s):CVE-2014-1626
Created:January 31, 2014 Updated:February 5, 2014

From the CVE entry:

XML External Entity (XXE) vulnerability in MARC::File::XML module before 1.0.2 for Perl, as used in Evergreen, Koha, perl4lib, and possibly other products, allows context-dependent attackers to read arbitrary files via a crafted XML file.

Fedora FEDORA-2014-1326 perl-MARC-XML 2014-01-31
Fedora FEDORA-2014-1341 perl-MARC-XML 2014-01-31

(Log in to post comments)

Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds