Use the Red Hat Network to apply this update are available atħ91296 - CVE-2012-0037 raptor: XML External Entity (XXE) attack via RDF files This update is available via the Red Hat Network.
Relevant to your system have been applied. Instances of applications must be restarted for this updateīefore applying this update, make sure all previously-released errata Which contain backported patches to correct this issue. Morgan of VSR for reporting thisĪll users are advised to upgrade to these updated packages, Possibly, execute arbitrary code with the privileges of the user running
Raptor handled external entities could cause to crash or, Possibly allow a remote attacker to obtain a copy of an arbitrary localįile that the user running had access to. If were to open a specially-crafted file (suchĪs an OpenDocument Format or OpenDocument Presentation file), it could Įmbeds a copy of Raptor, which provides parsers for Resource DescriptionĪn XML External Entity expansion flaw was found in the way Raptor processed Presentation manager, formula editor, and a drawing program. is an office productivity suite that includes desktopĪpplications, such as a word processor, spreadsheet application, RHEL Optional Productivity Applications (v. A Common Vulnerability Scoring System (CVSS)īase score, which gives a detailed severity rating, is available from the The Red Hat Security Response Team has rated this update as having Updated packages that fix one security issue are nowĪvailable for Red Hat Enterprise Linux 5. The following security updates has been released for RHEL: Important: security update and Important: raptor security update
0 kommentar(er)
