Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 573
Alerts This Week
Warning Icon 1 573

Fedora 23: FEDORA-2016-4d0e6ba888 Critical: OAuth CSRF Issue

fedora
Calendar Grey February 17, 2016
Dist Fedora Esm H88
Important patch addressing CSRF vulnerability in springframework-social for Fedora 23 software.
security fix for CVE-2015-5258

Summary

The Spring Social project allows you to integrate the

APIs exposed by Software-as-a-Service (SaaS) providerssuch as Facebook and Twitter into your applications.

It consists of a service provider 'connect' framework,

sign-in support, and strongly-typed Java API bindings.

Update Information:

security fix for CVE-2015-5258

Change Log

References


[ 1 ] Bug #1305443 - CVE-2015-5258 springframework-social: CSRF vulnerability when authorizing an app against OAuth 2 API provider https://bugzilla.redhat.com/show_bug.cgi?id=1305443

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update springframework-social' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: springframework-social
Product: Fedora 23
Version: 1.0.3
Release: 3.fc23
URL: Summary : Connect your applications with SaaS providers such as Facebook and Twitter

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.