[SECURITY] Fedora 18 Update: tinymce-spellchecker-2.0.5-8.fc18
updates at fedoraproject.org
updates at fedoraproject.org
Sun Feb 3 13:27:39 UTC 2013
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-1371
2013-01-23 15:06:58
--------------------------------------------------------------------------------
Name : tinymce-spellchecker
Product : Fedora 18
Version : 2.0.5
Release : 8.fc18
URL : http://wiki.moxiecode.com/index.php/TinyMCE:Plugins/spellchecker
Summary : TinyMCE spellchecker plugin
Description :
This plugin adds spellchecker functionality to TinyMCE by providing a
new button that performs a AJAX call to a back-end PHP page that uses
PSpell/ASpell or Google spellchecker.
--------------------------------------------------------------------------------
Update Information:
backport security fix
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 22 2013 Matthias Runge <mrunge at redhat.com> - 2.0.5-8
- fixed security issue CVE-2012-6112
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #902726 - CVE-2012-6112 tinymce-spellchecker (Google Spellchecker): Control characters not sanitized properly from $lang and $str arguments in _getMatches
https://bugzilla.redhat.com/show_bug.cgi?id=902726
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update tinymce-spellchecker' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list