[SECURITY] Fedora 18 Update: php-symfony-symfony-1.4.20-2.fc18

updates at fedoraproject.org updates at fedoraproject.org
Sat Dec 1 09:49:38 UTC 2012


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-19076
2012-11-27 09:34:39
--------------------------------------------------------------------------------

Name        : php-symfony-symfony
Product     : Fedora 18
Version     : 1.4.20
Release     : 2.fc18
URL         : http://www.symfony-project.org/
Summary     : Open-Source PHP Web Framework
Description :

Symfony is a complete framework designed to optimize the development of web
applications by way of several key features. For starters, it separates a web
application's business rules, server logic, and presentation views.
It contains numerous tools and classes aimed at shortening the development time
of a complex web application. Additionally, it automates common tasks so that
the developer can focus entirely on the specifics of an application.
The end result of these advantages means there is no need to reinvent the wheel
every time a new web application is built!

--------------------------------------------------------------------------------
Update Information:

upstream 1.4.20
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #880240 - CVE-2012-5574 php-symfony-symfony: Ability to read arbitrary files on the server, readable with the web server privileges
        https://bugzilla.redhat.com/show_bug.cgi?id=880240
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update php-symfony-symfony' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


More information about the package-announce mailing list