Site Navigation:
security perl-CGI-Simple-1.112-2.el5 security update
Status:obsolete
Release: Fedora EPEL 5
Update ID: FEDORA-EPEL-2010-3772
Builds: perl-CGI-Simple-1.112-2.el5 (logs)
Pushed: False
Date Submitted: 2010-12-01 19:09:00
Date Released: 2010-12-10 16:55:25
Date Modified: 2010-12-02 08:17:31
Submitter: spot
Karma: 0
Details

Fix boundary to use randomized value as opposed to hardcoded value.

Bugs Fixed
658973 - perl-CGI-Simple: CVE-2010-2761 -- hardcoded value of the MIME boundary string in multipart/x-mixed-replace content, CVE-2010-4410 -- CRLF injection vulnerability in the header function flaws [fedora-all]
658970 - perl-CGI-Simple: CRLF injection vulnerability via a crafted URL
Feedback
bodhi - 2010-12-01 19:09:06
This update has been submitted for testing by spot.
bodhi - 2010-12-10 17:29:29
This update has been pushed to testing
bodhi - 2010-12-25 04:15:49
This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes
bodhi - 2011-01-21 18:22:42
This update has been obsoleted by https://admin.fedoraproject.org/updates/perl-CGI-Simple-1.113-1.el5

Add a comment

Tip: Login to impact how quickly this update gets pushed or unpushed.
obfuscated letters