Advisories » MGASA-2014-0488

Updated perl-Mojolicious packages fix a security vulnerability

Publication date: 26 Nov 2014
Modification date: 26 Nov 2014
Type: security
Affected Mageia releases : 3 , 4

Description

Updated perl-Mojolicious package fixes security vulnerability:

An assumption in Mojolicious before 5.48 CGI parameter handling that can
result in parameter injection attacks.
                

References

• https://bugs.mageia.org/show_bug.cgi?id=14345
• https://groups.google.com/forum/#!topic/mojolicious/aJTYjRCPjOE
• https://lists.fedoraproject.org/pipermail/package-announce/2014-October/141315.html

SRPMS

3/core

• perl-Mojolicious-5.490.0-1.mga3

4/core

• perl-Mojolicious-5.490.0-1.mga4