Fedora 30: 2019-a1636592a3 Critical: GLPI Account Takeover Fix

GLPI is the Information Resource-Manager with an additional Administration-Interface. You can use it to build up a database with an inventory for your

company (computer, software, printers...). It has enhanced functions to make

the daily life for the administrators easier, like a job-tracking-system with

mail-notification and methods to build a database with basic information

about your network-topology.

**GLPI version 9.4.4** This is a **security release**, upgrading is highly

recommended Non exhaustive list of changes: * [security] Prevent account

takeover vulnerability , * [security] Prevent execution of XSS on rich text,

* fix cache key lenght issues, * fix user picture removal at login, *

several fixes on recurring tickets, * fix some transfer errors related to

entities among others, * and more! See [changelog](https://github.com/glpi-project/glpi/milestone/37?closed=1) for details.

* Tue Sep 24 2019 Remi Collet - 9.4.4-1

- update to 9.4.4

- allow elvanto/litemoji 2.0

* Thu Jun 20 2019 Remi Collet - 9.4.3-1

- update to 9.4.3

* Thu Apr 11 2019 Remi Collet - 9.4.2-1

- update to 9.4.2

su -c 'dnf upgrade --advisory FEDORA-2019-a1636592a3' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/