Fedora 21: FEDORA-2015-13488 Moderate: XML Injection in php-ZendFramework2

fedora

August 27, 2015

Zend Framework Upstream ChangeLogs: * [Version 2.4.7]() * [Version 2.4.6]() * [Version 2.4.5]() * [Version 2.4.4]() * [Version

Summary

Zend Framework 2 is an open source framework for developing web applications

and services using PHP 5.3+. Zend Framework 2 uses 100% object-oriented code

and utilizes most of the new features of PHP 5.3, namely namespaces, late

static binding, lambda functions and closures.

Zend Framework 2 evolved from Zend Framework 1, a successful PHP framework

with over 15 million downloads.

Note: This meta package installs all base Zend Framework component packages

(Authentication, Barcode, Cache, Captcha, Code, Config, Console, Crypt, Db,

Debug, Di, Dom, Escaper, EventManager, Feed, File, Filter, Form, Http, I18n,

InputFilter, Json, Ldap, Loader, Log, Mail, Math, Memory, Mime, ModuleManager,

Mvc, Navigation, Paginator, Permissions-Acl, Permissions-Rbac, ProgressBar,

Serializer, Server, ServiceManager, Session, Soap, Stdlib, Tag, Test, Text,

Uri, Validator, Version, View, XmlRpc) except the optional Cache-apc and

Cache-memcached packages.

Update Information:

Zend Framework Upstream ChangeLogs: * [Version 2.4.7]() * [Version 2.4.6]() * [Version 2.4.5]() * [Version 2.4.4]() * [Version 2.4.3]() * [Version 2.4.2]() * [Version 2.4.1]() * [Version 2.4.0]()

Topics Covered

security advisory security update Fedora XML injection php framework

Change Log

References

[ 1 ] Bug #1253250 - CVE-2015-5161 php-ZendFramework: XML external entity injection (XXE) on PHP FPM https://bugzilla.redhat.com/show_bug.cgi?id=1253250

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update php-ZendFramework2' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity

important

Lowest

Low

Medium

High

Critical

Name: php-ZendFramework2

Product: Fedora 21

Version: 2.4.7

Release: 1.fc21

URL: https://framework.zend.com/

Summary: Zend Framework 2

Topics Covered

security advisory security update Fedora XML injection php framework

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Fedora 21: FEDORA-2015-13488 Moderate: XML Injection in php-ZendFramework2

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Fedora 21: FEDORA-2015-13488 Moderate: XML Injection in php-ZendFramework2

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!