[SECURITY] Fedora 18 Update: perl-HTML-Template-Pro-0.9509-1.fc18
updates at fedoraproject.org
updates at fedoraproject.org
Tue Oct 9 00:34:01 UTC 2012
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-15439
2012-10-05 05:34:33
--------------------------------------------------------------------------------
Name : perl-HTML-Template-Pro
Product : Fedora 18
Version : 0.9509
Release : 1.fc18
URL : http://search.cpan.org/dist/HTML-Template-Pro/
Summary : Perl/XS module to use HTML Templates from CGI scripts
Description :
A fast and lightweight C/Perl+XS HTML Template engine implementation.
--------------------------------------------------------------------------------
Update Information:
This version of HTML::Template::Pro fixes a cross-site scripting (XSS) vulnerability in the module.
http://www.openwall.com/lists/oss-security/2011/12/19/1
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=652587
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4616
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #768822 - CVE-2011-4616 perl-HTML-Template-Pro: XSS issue
https://bugzilla.redhat.com/show_bug.cgi?id=768822
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update perl-HTML-Template-Pro' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list