694167 – CVE-2009-0217 xmlsec1, mono, xml-security-c, xml-security-1.3.0-1jpp.ep1.*: XMLDsig HMAC-based signatures spoofing and authentication bypass [epel-5]

Bug 694167 - CVE-2009-0217 xmlsec1, mono, xml-security-c, xml-security-1.3.0-1jpp.ep1.*: XMLDsig HMAC-based signatures spoofing and authentication bypass [epel-5]

Summary: CVE-2009-0217 xmlsec1, mono, xml-security-c, xml-security-1.3.0-1jpp.ep1.*: X...

Keywords:
Status:	CLOSED EOL
Alias:	None
Product:	Fedora EPEL
Classification:	Fedora
Component:	mono
Sub Component:
Version:	el5
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Xavier Lamien
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	CVE-2009-0217
TreeView+	depends on / blocked

Reported:	2011-04-06 16:28 UTC by Josh Bressers
Modified:	2023-09-14 01:23 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2016-11-22 06:04:24 UTC
Type:	---
Embargoed:

Attachments	(Terms of Use)

Description Josh Bressers 2011-04-06 16:28:27 UTC

epel-5 tracking bug for mono: see blocks bug list for full details of the security issue(s).

This bug is never intended to be made public, please put any public notes
in the 'blocks' bugs.


[bug automatically created by: add-tracking-bugs]

Comment 1 Jason Taylor 2014-12-09 12:46:47 UTC

Hi Xavier,

Are there any plans to update the version of mono and associaated mono packages in epel for el5? If not should we look at retiring the package(s)?

Regards,

JT

Comment 2 Timotheus Pokorra 2016-11-22 06:04:24 UTC

I have now retired Mono 1.2 from Epel5.
I recommend to use Mono 4.2 in Epel7.

Comment 3 Red Hat Bugzilla 2023-09-14 01:23:29 UTC

The needinfo request[s] on this closed bug have been removed as they have been unresolved for 1000 days

Note You need to log in before you can comment on or make changes to this bug.