FEDORA-EPEL-2015-1636 created by giallu 6 years ago for Fedora EPEL 5
stable

With this update we are going to move to the 1.2 series from upstream, so we close all known security issues and newer security fixes can be applied easily.

PLEASE NOTE:

This update needs DB SCHEMA CHANGES to get correctly deployed, so please be sure to test it on a backup instance. Please refer to upstream documentation for upgrade steps.

This update has been submitted for testing by giallu.

6 years ago

This update is currently being pushed to the Fedora EPEL 5 testing updates repository.

6 years ago

This update has been pushed to testing

6 years ago

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

6 years ago

This update has been submitted for stable by giallu.

6 years ago

This update is currently being pushed to the Fedora EPEL 5 stable updates repository.

6 years ago

This update has been pushed to stable

6 years ago

Please login to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
6 years ago
in testing
6 years ago
in stable
6 years ago
modified
6 years ago
BZ#800667 mantis: many security flaws [epel-5]
0
0
BZ#902333 mantis: Reporter privilege user can change bug state to NEW [epel-5]
0
0
BZ#924342 CVE-2013-1883 mantis: Site / db server DoS via certain View Issues page search query [epel-5]
0
0
BZ#948997 CVE-2013-1931 CVE-2013-1934 mantis various flaws [epel-5]
0
0
BZ#1063114 CVE-2014-1609 CVE-2014-1608 mantis: SQL injection issues [epel-5]
0
0
BZ#1141310 CVE-2014-6387 mantis: null byte poisoning in LDAP authentication
0
0
BZ#1141314 mantis: null byte poisoning in LDAP authentication [epel-5]
0
0
BZ#1159680 CVE-2014-8554 mantis: incomplete fix for CVE-2014-1609 [epel-5]
0
0
BZ#1162048 CVE-2014-8598 CVE-2014-7146 mantis: issues in the XML Import/Export plug-in to be fixed in the upcoming 1.2.18 release [epel-5]
0
0
BZ#1164622 mantis: cross-site scripting (XSS) issues to be fixed in the upcoming 1.2.18 release [epel-5]
0
0
BZ#1164633 mantis: information disclosure issue to be fixed in the upcoming 1.2.18 release [epel-5]
0
0
BZ#1165154 mantis: XSS on Configuration Report page [epel-all]
0
0
BZ#1168164 CVE-2014-9089 mantis: SQL injection in view_all_set.php [epel-5]
0
0
BZ#1168622 CVE-2014-9117 mantis: CAPTCHA bypass in registration form [epel-5]
0
0
BZ#1169164 mantis: various flaws [epel-5]
0
0
BZ#1170183 mantis: XSS in extended project browser [epel-5]
0
0
BZ#1171715 CVE-2014-9279 CVE-2014-9280 mantis: various flaws [epel-5]
0
0
BZ#1183596 CVE-2014-9573 CVE-2014-9572 CVE-2014-9571 mantis: multiple issues [epel-all]
0
0
BZ#1191134 mantis: XSS in adm_config_report.php [epel-all]
0
0

Automated Test Results