Advisories ยป MGASA-2015-0241

Updated php-ZendFramework packages fix security vulnerabilities

Publication date: 08 Jun 2015
Type: security
Affected Mageia releases : 4
CVE: CVE-2015-3154

Description

Updated php-ZendFramework packages fix security vulnerability:

Filippo Tessarotto and Maks3w reported potential CRLF injection attacks in
mail and HTTP headers in ZendFramework before 1.2.12 (CVE-2015-3154).
                

References

SRPMS

4/core