Fedora 11: 2009-8157 Critical: XML-Dsig Authentication Bypass
fedora
July 31, 2009
Fixes CVE-2009-0217 (#511915)
Summary
The xml-security-c library is a C++ implementation of the XML Digital Signature
specification. The library makes use of the Apache XML project's Xerces-C XML
Parser and Xalan-C XSLT processor. The latter is used for processing XPath and
XSLT transforms.
Update Information:
Fixes CVE-2009-0217 (#511915)
Topics Covered
Change Log
References
[ 1 ] Bug #511915 - CVE-2009-0217 xmlsec1, mono, xml-security-c, xml-security-1.3.0-1jpp.ep1.*: XMLDsig HMAC-based signatures spoofing and authentication bypass
https://bugzilla.redhat.com/show_bug.cgi?id=511915
Update Instructions
This update can be installed with the "yum" update program. Use su -c 'yum update xml-security-c' at the command line. For more information, refer to "Managing Software with yum", available at .
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: xml-security-c
Product: Fedora 11
Version: 1.5.1
Release: 1.fc11
URL: Summary : C++ Implementation of W3C security standards for XML
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!