45 matches found
Fedora Update for php-ZendFramework2 FEDORA-2015-7887
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 22 : php-ZendFramework2-2.3.8-1.fc22 (2015-7708)
ZF2015-04: Zend\Mail and Zend\Http were both susceptible to CRLF Injection Attack vectors for HTTP, this is often referred to as HTTP Response Splitting. Both components were updated to perform header value validations to ensure no values contain characters not detailed in their corresponding...
Fedora 20 : php-ZendFramework2-2.3.8-1.fc20 (2015-7887)
ZF2015-04: Zend\Mail and Zend\Http were both susceptible to CRLF Injection Attack vectors for HTTP, this is often referred to as HTTP Response Splitting. Both components were updated to perform header value validations to ensure no values contain characters not detailed in their corresponding...
Fedora 21 : php-ZendFramework2-2.3.8-1.fc21 (2015-7687)
ZF2015-04: Zend\Mail and Zend\Http were both susceptible to CRLF Injection Attack vectors for HTTP, this is often referred to as HTTP Response Splitting. Both components were updated to perform header value validations to ensure no values contain characters not detailed in their corresponding...
Fedora 21 : php-ZendFramework2-2.3.7-1.fc21 (2015-3902)
Version 2.3.7 2015-03-12 - 7255 Revert BC break against AbstractRestfulController Version 2.3.6 2015-03-12 - ZF2015-03 Zend\Validator\Csrf was incorrectly testing null or improperly formatted token identifiers, allowing them to pass validation. This release provides patches to correct the behavio...
Fedora 20 : php-ZendFramework2-2.3.7-1.fc20 (2015-3880)
Version 2.3.7 2015-03-12 - 7255 Revert BC break against AbstractRestfulController Version 2.3.6 2015-03-12 - ZF2015-03 Zend\Validator\Csrf was incorrectly testing null or improperly formatted token identifiers, allowing them to pass validation. This release provides patches to correct the behavio...
Fedora Update for php-ZendFramework2 FEDORA-2015-3902
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for php-ZendFramework2 FEDORA-2015-3880
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 22 : php-ZendFramework2-2.3.7-1.fc22 (2015-3833)
Version 2.3.7 2015-03-12 - 7255 Revert BC break against AbstractRestfulController Version 2.3.6 2015-03-12 - ZF2015-03 Zend\Validator\Csrf was incorrectly testing null or improperly formatted token identifiers, allowing them to pass validation. This release provides patches to correct the behavio...
Fedora Update for php-ZendFramework2 FEDORA-2014-14043
Check the version of php-ZendFramework2 SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868470";...
Fedora 19 : php-ZendFramework2-2.2.8-2.fc19 (2014-14043)
Security Fixes - ZF2014-05: Due to an issue that existed in PHP's LDAP extension, it is possible to perform an unauthenticated simple bind against a LDAP server by using a null byte for the password, regardless of whether or not the user normally requires a password. We have provided a patch in...
[SECURITY] Fedora 19 Update: php-ZendFramework2-2.2.8-2.fc19
Zend Framework 2 is an open source framework for developing web applications and services using PHP 5.3+. Zend Framework 2 uses 100% object-oriented code and utilizes most of the new features of PHP 5.3, namely namespaces, late static binding, lambda functions and closures. Zend Framework 2 evolv...
Fedora 20 : php-ZendFramework2-2.3.3-2.fc20 (2014-13302)
Security release - ZF2014-05, which mititages null byte poisoning of the password provided for LDAP authentication, thus prevening unauthorized LDAP binding. This corrects for unpatched versions of PHP versions 5.5.11 and below, 5.4.27 and below, and any prior releases. - ZF2014-06, which mitigat...
Fedora Update for php-ZendFramework2 FEDORA-2014-13302
Check the version of php-ZendFramework2 SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868431";...
[SECURITY] Fedora 21 Update: php-ZendFramework2-2.3.3-1.fc21
Zend Framework 2 is an open source framework for developing web applications and services using PHP 5.3+. Zend Framework 2 uses 100% object-oriented code and utilizes most of the new features of PHP 5.3, namely namespaces, late static binding, lambda functions and closures. Zend Framework 2 evolv...
Fedora 21 : php-ZendFramework2-2.3.3-1.fc21 (2014-12676)
Security release - ZF2014-05, which mititages null byte poisoning of the password provided for LDAP authentication, thus prevening unauthorized LDAP binding. This corrects for unpatched versions of PHP versions 5.5.11 and below, 5.4.27 and below, and any prior releases. - ZF2014-06, which mitigat...
Fedora Update for php-ZendFramework2 FEDORA-2014-6540
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for php-ZendFramework2 FEDORA-2014-6530
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 19 : php-ZendFramework2-2.2.7-1.fc19 (2014-6530)
2.2.7 2014-04-015 SECURITY UPDATES - ZF2014-03: Potential XSS vector in multiple view helpers due to inappropriate HTML attribute escaping. Many view helpers were using the escapeHtml view helper in order to escape HTML attributes. This release patches them to use the escapeHtmlAttr view helper i...
Fedora 20 : php-ZendFramework2-2.2.7-1.fc20 (2014-6540)
2.2.7 2014-04-015 SECURITY UPDATES - ZF2014-03: Potential XSS vector in multiple view helpers due to inappropriate HTML attribute escaping. Many view helpers were using the escapeHtml view helper in order to escape HTML attributes. This release patches them to use the escapeHtmlAttr view helper i...