[SECURITY] Fedora 20 Update: mapserver-6.2.2-1.fc20
updates at fedoraproject.org
updates at fedoraproject.org
Thu Mar 19 18:42:57 UTC 2015
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-17559
2014-12-25 04:34:35
--------------------------------------------------------------------------------
Name : mapserver
Product : Fedora 20
Version : 6.2.2
Release : 1.fc20
URL : http://www.mapserver.org
Summary : Environment for building spatially-enabled internet applications
Description :
Mapserver is an internet mapping program that converts GIS data to
map images in real time. With appropriate interface pages,
Mapserver can provide an interactive internet map based on
custom GIS data.
--------------------------------------------------------------------------------
Update Information:
Update to latest 6.2 release
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 23 2014 Pavel Lisý <pali at fedoraproject.org> - 6.2.2-1
- Update to latest 6.2 release
- BZ 1048689 - CVE-2013-7262 mapserver: SQL injections with postgis TIME filters
- BZ 747409 - MapServer uses internal AGG and does not depend on agg-devel
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1048689 - CVE-2013-7262 mapserver: SQL injections with postgis TIME filters [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1048689
[ 2 ] Bug #747409 - Port from ELGIS: Simplfy spec
https://bugzilla.redhat.com/show_bug.cgi?id=747409
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update mapserver' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list