Fedora EPEL 5 Security Update: mantis-1.2.17-3.el5

Resolved Bugs
1141310 – CVE-2014-6387 mantis: null byte poisoning in LDAP authentication
1141314 – mantis: null byte poisoning in LDAP authentication [epel-5]<br
Fix for CVE-2014-6387
Please note: this update is from the 1.2 series, so existing installations (on 1.1) will need manual upgrade steps to apply the DB schema migration.
Please check the file
/usr/share/doc/mantis/README.Fedora
for the installation/upgrade steps.

Leave a Reply