Summary
The remote host is missing an update to moin
announced via advisory FEDORA-2009-3845.
Solution
Apply the appropriate updates.
This update can be installed with the yum update program. Use su -c 'yum update moin' at the command line.
For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/.
https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-3845
Insight
Update Information:
Update moin to 1.6.4. Fix the following CVEs: CVE-2008-0781 (again), CVE-2008-3381, CVE-2009-0260, CVE-2009-0312. Fix AttachFile escaping problems, upstream 1.7 changeset 5f51246a4df1 backported.
ChangeLog:
* Mon Apr 20 2009 Ville-Pekka Vainio 1.6.4-1
- Update to 1.6.4
- CVE-2008-3381 fixed upstream
- Re-fix CVE-2008-0781, upstream seems to have dropped the fix in 1.6, used part of upstream 1.5 db212dfc58ef, backported upstream 1.7 5f51246a4df1 and 269a1fbc3ed7
- Fix CVE-2009-0260, patch from Debian etch
- Fix CVE-2009-0312
- Fix AttachFile escaping problems, backported upstream 1.7 5c4043e651b3
References
Severity
Classification
-
CVE CVE-2008-0781, CVE-2008-3381, CVE-2009-0260, CVE-2009-0312 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities