Fedora Essential and Critical Security Patch Updates - Page 704

Find the information you need for your favorite open source distribution .

Fedora 23: mediawiki Security Update 2015-13920

Fedora 23: mediawiki Security Update 2015-13920

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

* (T94116) SECURITY: Compare API watchlist token in constant time * (T97391) SECURITY: Escape error message strings in thumb.php * (T106893) SECURITY: Don't leak autoblocked IP addresses on Special:DeletedContributions * (T102562) Fix InstantCommons parameters to handle the new HTTPS-only policy of Wikimedia Commons. * (T100767) Setting a configuration setting for skin or extension to

Fedora 21: maradns Security Update

Fedora 21: maradns Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

This update fixes Denial-of-Service vulnerability in ”zoneserver” component. By making the zoneserver daemon free an invalid memory location, it was possible to terminate the zoneserver process. It is not known whether or not this bug is remotely exploitable. More details: https://samiam.org/blog/2015-08-19.html

Fedora 22: php-twig Security Update 2015-13433

Fedora 22: php-twig Security Update 2015-13433

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

## 1.20.0 (2015-08-12) * forbid access to the Twig environment from templates and internal parts of Twig_Template * fixed limited RCEs when in sandbox mode * deprecated Twig_Template::getEnvironment() * deprecated the _self variable for usage outside of the from and import tags * added Twig_BaseNodeVisitor to ease the compatibility of node visitors between 1.x and 2.x ## 1.19.0 (2015-07-31)

Fedora 23: php-twig Security Update 2015-13463

Fedora 23: php-twig Security Update 2015-13463

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

## 1.20.0 (2015-08-12) * forbid access to the Twig environment from templates and internal parts of Twig_Template * fixed limited RCEs when in sandbox mode * deprecated Twig_Template::getEnvironment() * deprecated the _self variable for usage outside of the from and import tags * added Twig_BaseNodeVisitor to ease the compatibility of node visitors between 1.x and 2.x ## 1.19.0 (2015-07-31)

Fedora 22: maradns Security Update

Fedora 22: maradns Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

This update fixes Denial-of-Service vulnerability in ”zoneserver” component. By making the zoneserver daemon free an invalid memory location, it was possible to terminate the zoneserver process. It is not known whether or not this bug is remotely exploitable. More details: https://samiam.org/blog/2015-08-19.html

Fedora 23: maradns Security Update

Fedora 23: maradns Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

This update fixes Denial-of-Service vulnerability in ”zoneserver” component. By making the zoneserver daemon free an invalid memory location, it was possible to terminate the zoneserver process. It is not known whether or not this bug is remotely exploitable. More details: https://samiam.org/blog/2015-08-19.html

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved