-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-5764 2009-06-02 13:29:20 -------------------------------------------------------------------------------- Name : ocsinventory Product : Fedora 9 Version : 1.02.1 Release : 1.fc9 URL : http://www.ocsinventory-ng.org/ Summary : Open Computer and Software Inventory Next Generation Description : Open Computer and Software Inventory Next Generation is an application designed to help a network or system administrator keep track of the computers configuration and software that are installed on the network. OCS Inventory is also able to detect all active devices on your network, such as switch, router, network printer and unattended devices. OCS Inventory NG includes package deployment feature on client computers. ocsinventory is a metapackage that will install the communication server, the administration console and the database server (MySQL). -------------------------------------------------------------------------------- Update Information: 2 Security fixes - CVE-2009-1769 OCS Inventory NG: Authentication result varies for existent and non-existent users - SQL injection and Unauthenticated Arbitrary File Read Some Other minor bug fixes http://www.ocsinventory-ng.org/index.php?mact=News,cntnt01,detail,0&cntnt01articleid=140&cntnt01returnid=64 -------------------------------------------------------------------------------- References: [ 1 ] Bug #502250 - CVE-2009-1769 OCS Inventory NG: Authentication result varies for existent and non-existent users https://bugzilla.redhat.com/show_bug.cgi?id=502250 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update ocsinventory' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at http://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ Fedora-package-announce mailing list Fedora-package-announce@redhat.com http://www.redhat.com/mailman/listinfo/fedora-package-announce
Fedora 9 Update: ocsinventory-1.02.1-1.fc9
June 2, 2009
2 Security fixes - CVE-2009-1769 OCS Inventory NG: Authentication result varies
for existent and non-existent users - SQL injection and Unauthenticated
Arbitrary File Read So...
Summary
Open Computer and Software Inventory Next Generation is an application
designed to help a network or system administrator keep track of the
computers configuration and software that are installed on the network.
OCS Inventory is also able to detect all active devices on your network,
such as switch, router, network printer and unattended devices.
OCS Inventory NG includes package deployment feature on client computers.
ocsinventory is a metapackage that will install the communication server,
the administration console and the database server (MySQL).
Update Information:
2 Security fixes - CVE-2009-1769 OCS Inventory NG: Authentication result varies for existent and non-existent users - SQL injection and Unauthenticated Arbitrary File Read Some Other minor bug fixes http://www.ocsinventory-ng.org/index.php?mact=News,cntnt01,detail,0&cntnt01articleid=140&cntnt01returnid=64
Change Log
References
[ 1 ] Bug #502250 - CVE-2009-1769 OCS Inventory NG: Authentication result varies for existent and non-existent users https://bugzilla.redhat.com/show_bug.cgi?id=502250
Update Instructions
This update can be installed with the "yum" update program. Use su -c 'yum update ocsinventory' at the command line. For more information, refer to "Managing Software with yum", available at .
Severity
Name : ocsinventory
Product : Fedora 9
Version : 1.02.1
Release : 1.fc9
URL : http://www.ocsinventory-ng.org/
Summary : Open Computer and Software Inventory Next Generation
News
HOWTOs
Features
About Us
Powered By
