Fedora Core 10 FEDORA-2009-6557 (moin) Network Vulnerability

Summary

The remote host is missing an update to moin announced via advisory FEDORA-2009-6557.

Solution

Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update moin' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-6557

Insight

Update Information: This update includes a security fix for a hierarchical ACL vulnerability (hierarchical is not the default ACL mode), http://moinmo.in/SecurityFixes has the details of the fix. ChangeLog: * Sat Jun 13 2009 Ville-Pekka Vainio 1.6.4-2 - Hierarchical ACL security fix from 1.8.4, 1.8 HG 897cdbe9e8f2 - Details at http://moinmo.in/SecurityFixes#moin_1.8.3 - Convert CHANGES to UTF-8

Severity

Classification

CVE CVE-2008-0781, CVE-2008-3381, CVE-2009-0260, CVE-2009-0312

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Fedora Core 10 FEDORA-2009-2149 (rubygem-actionpack)
Fedora Core 10 FEDORA-2009-13066 (ruby)
Fedora Core 10 FEDORA-2009-2651 (pdfjam)
Fedora Core 10 FEDORA-2009-5513 (jetty)
Fedora Core 10 FEDORA-2009-10233 (deltarpm)

Take action and discover your vulnerabilities