Fedora 20: resteasy Security Update

    Date 24 Apr 2015
    378
    Posted By LinuxSecurity Advisories
    Security fix for CVE-2014-3490
    --------------------------------------------------------------------------------
    Fedora Update Notification
    FEDORA-2014-16845
    2014-12-13 08:32:35
    --------------------------------------------------------------------------------
    
    Name        : resteasy
    Product     : Fedora 20
    Version     : 3.0.6
    Release     : 3.fc20
    URL         : https://www.jboss.org/resteasy
    Summary     : Framework for RESTful Web services and Java applications
    Description :
    RESTEasy contains a JBoss project that provides frameworks to help
    build RESTful Web Services and RESTful Java applications. It is a fully
    certified and portable implementation of the JAX-RS specification.
    
    --------------------------------------------------------------------------------
    Update Information:
    
    Security fix for CVE-2014-3490
    --------------------------------------------------------------------------------
    ChangeLog:
    
    * Wed Dec 10 2014 Ade Lee  - 3.0.6-3
    - Add fix for CVE-2014-3490
    * Tue Jan 14 2014 Marek Goldmann  - 3.0.6-2
    - Support for Netty 4 in Rawhide
    * Fri Jan 10 2014 Marek Goldmann  - 3.0.6-1
    - Upstream release 3.0.6.Final
    --------------------------------------------------------------------------------
    References:
    
      [ 1 ] Bug #1107901 - CVE-2014-3490 RESTEasy: XXE via parameter entities
            https://bugzilla.redhat.com/show_bug.cgi?id=1107901
    --------------------------------------------------------------------------------
    
    This update can be installed with the "yum" update program.  Use
    su -c 'yum update resteasy' at the command line.
    For more information, refer to "Managing Software with yum",
    available at https://docs.fedoraproject.org/yum/.
    
    All packages are signed with the Fedora Project GPG key.  More details on the
    GPG keys used by the Fedora Project can be found at
    https://fedoraproject.org/keys
    --------------------------------------------------------------------------------
    _______________________________________________
    package-announce mailing list
    This email address is being protected from spambots. You need JavaScript enabled to view it.
    https://admin.fedoraproject.org/mailman/listinfo/package-announce
    

    LinuxSecurity Poll

    Do you feel that the Lawful Access to Encrypted Data Act, which aims to force encryption backdoors, is a threat to US citizens' privacy?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/30-do-you-feel-that-the-lawful-access-to-encrypted-data-act-which-aims-to-force-encryption-backdoors-is-a-threat-to-privacy?task=poll.vote&format=json
    30
    radio
    [{"id":"106","title":"Yes - I am a privacy advocate and I am strongly opposed to this bill.","votes":"23","type":"x","order":"1","pct":95.83,"resources":[]},{"id":"107","title":"I'm undecided - it has its pros and cons.","votes":"1","type":"x","order":"2","pct":4.17,"resources":[]},{"id":"108","title":"No - I support this bill and feel that it will help protect against crime and threats to our national security. ","votes":"0","type":"x","order":"3","pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
    bottom 200

    Advisories

    Please enable / Bitte aktiviere JavaScript!
    Veuillez activer / Por favor activa el Javascript![ ? ]

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.