Stay Secure with the Latest Linux Advisories

security advisorycritical issueFedora

Fedora 30: FEDORA-2020-8d3b359179 Critical: perl-Mojolicious Security Fix

This package fixes a security issue that allowed for _method query parameters to be used with GET requests. The fix is backported from Mojolicious v8.42.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2020-8d3b359179 2020-05-19 03:06:45.613228 --------------------------------------------------------------------------------Name : perl-Mojolicious Product : Fedora 30 Version : 8.42 Release : 1.fc30 URL : https://metacpan.org/dist/Mojolicious Summary : A next generation web framework for Perl Description : Back in the early days of the web there was this wonderful Perl library called CGI, many people only learned Perl because of it. It was simple enough to get started without knowing much about the language and powerful enough to keep you going, learning by doing was much fun. While most of the techniques used are outdated now, the idea behind it is not. Mojolicious is a new attempt at implementing this idea using state of the art technology. --------------------------------------------------------------------------------Update Information: This package fixes a security issue that allowed for _method query parameters to be used with GET requests. The fix is backported from Mojolicious v8.42. --------------------------------------------------------------------------------ChangeLog: * Sun May 10 2020 Emmanuel Seyman - 8.42-1 - Update to 8.42 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2020-8d3b359179' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Update for perl-Mojolicious in Fedora 30 has been released, addressing vulnerabilities related to _method query parameters within GET requests.. Perl Mojolicious Fix, Fedora 30 Update, Security Issue Resolution. . Severity: Critical. LinuxSecurity.com Team

May 18, 2020 •Critical Fedora