Fedora 25: glpi Security Update
Summary
GLPI is the Information Resource-Manager with an additional Administration-Interface. You can use it to build up a database with an inventory for your
company (computer, software, printers...). It has enhanced functions to make
the daily life for the administrators easier, like a job-tracking-system with
mail-notification and methods to build a database with basic information
about your network-topology.
* various security fixes (https://github.com/glpi-project/glpi/issues/2475,
https://github.com/glpi-project/glpi/issues/2476, https://github.com/glpi-project/glpi/pull/2492), * fix regressions on self service portal: *
self-service users should not be auto assigned as tech * type and
category fields are not selectable
[ 1 ] Bug #1473225 - CVE-2017-11474 CVE-2017-11475 glpi: SQL injection in ajax/common.tabs.php and front/rulesengine.test.php [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1473225
su -c 'dnf upgrade glpi' at the command line.
For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
FEDORA-2017-2ec83f11c1 2017-08-02 14:20:05.491874 Product : Fedora 25 Version : 9.1.6 Release : 1.fc25 URL : https://glpi-project.org/ Summary : Free IT asset management software Description : GLPI is the Information Resource-Manager with an additional Administration-Interface. You can use it to build up a database with an inventory for your company (computer, software, printers...). It has enhanced functions to make the daily life for the administrators easier, like a job-tracking-system with mail-notification and methods to build a database with basic information about your network-topology. * various security fixes (https://github.com/glpi-project/glpi/issues/2475, https://github.com/glpi-project/glpi/issues/2476, https://github.com/glpi-project/glpi/pull/2492), * fix regressions on self service portal: * self-service users should not be auto assigned as tech * type and category fields are not selectable [ 1 ] Bug #1473225 - CVE-2017-11474 CVE-2017-11475 glpi: SQL injection in ajax/common.tabs.php and front/rulesengine.test.php [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1473225 su -c 'dnf upgrade glpi' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Change Log
References