[SECURITY] Fedora 23 Update: php-doctrine-doctrine-bundle-1.5.2-1.fc23

updates at fedoraproject.org updates at fedoraproject.org
Fri Sep 18 19:29:23 UTC 2015


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-15205
2015-09-18 18:29:10.317484
--------------------------------------------------------------------------------

Name        : php-doctrine-doctrine-bundle
Product     : Fedora 23
Version     : 1.5.2
Release     : 1.fc23
URL         : https://github.com/doctrine/DoctrineBundle
Summary     : Symfony Bundle for Doctrine
Description :
Doctrine DBAL & ORM Bundle for the Symfony Framework.

Optional:
* Doctrine ORM (2.3 <= php-doctrine-orm < 3.0)
* Symfony Web Profile Bundle (2.3 <= php-symfony-web-profiler-bundle < 4.0)
* Twig (1.10 <= php-twig < 2.0)

--------------------------------------------------------------------------------
Update Information:

## 1.5.2 (2015-08-31)  ### Security:  * Fix Security Misconfiguration
Vulnerability, allowing potential local arbitrary code execution     *
CVE-2015-5723     * http://www.doctrine-project.org/2015/08/31/security_misconfi
guration_vulnerability_in_various_doctrine_projects.html  ## 1.5.1 (2015-08-12)
### Bugfix:  * Fixed the JS expanding all queries in the profiler in case of
multiple connections * Fixed the retrieval of the namespace in
DisconnectedMetadataFactory * Changed the composer constraint to allow Symfony
3.0 for people wanting to do early testing
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1253092 - php-doctrine-doctrine-bundle-v1.5.2 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1253092
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program. Use
su -c 'yum update php-doctrine-doctrine-bundle' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


More information about the package-announce mailing list