FEDORA-EPEL-2019-12a5fc9fde

security update in Fedora EPEL 7 for php-erusev-parsedown

Status: stable 4 months ago

1.7.1

  • #475: "Loose" lists will now contain paragraphs in all items, not just some.
  • #433: Links will no longer be double nested
  • #525: The info-string when beginning a code block may now contain non-word characters (e.g. c++)
  • #561: The mbstring extension (which we already depend on) has been added explicitly to composer.json
  • #563: The Parsedown::version constant now matches the release version
  • #560: Builds will now fail if we forget to update the version constant again

1.7.0

CVE-2018-1000162

  • Merge pull request #495 from aidantwoods/anti-xss
  • Prevent various XSS attacks (rebase and update of #276)

How to install

sudo dnf upgrade --advisory=FEDORA-EPEL-2019-12a5fc9fde

Comments 6

This update has been submitted for testing by siwinski.

This update has been pushed to testing.

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for batched by siwinski.

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
medium
Karma
0
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted 5 months ago
in testing 5 months ago
in stable 4 months ago

Related Bugs 2

00 #1569513 CVE-2018-1000162 php-erusev-parsedown: Cross Site Scripting in `setMarkupEscaped` [epel-all]
00 #1569514 CVE-2018-1000162 php-erusev-parsedown: Cross Site Scripting in `setMarkupEscaped` [fedora-all]

Automated Test Results