http://www.mandriva.com/en/
______________________________
Package : zarafa
Date : February 10, 2015
Affected: Business Server 1.0
______________________________
Problem Description:
Updated zarafa packages fix security vulnerability:
Robert Scheck discovered a flaw in Zarafa WebAccess >= 7.0.0 and
Zarafa WebApp that could allow a remote unauthenticated attacker to
exhaust the disk space of /tmp (CVE-2014-9465).
This update also adds some patches from Robert Scheck which correct
some packaging issues with zarafa-webaccess.
______________________________
References:
http://cve.mitre.org/cgi-bin/
http://advisories.mageia.org/
Komentarų nėra:
Rašyti komentarą