Vulnerability   
Search   
    Search 187964 CVE descriptions
and 85075 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.878378
Category:Fedora Local Security Checks
Title:Fedora: Security Advisory for gitit (FEDORA-2020-c39d7a562c)
Summary:The remote host is missing an update for the 'gitit'; package(s) announced via the FEDORA-2020-c39d7a562c advisory.
Description:Summary:
The remote host is missing an update for the 'gitit'
package(s) announced via the FEDORA-2020-c39d7a562c advisory.

Vulnerability Insight:
Gitit is a wiki backed by a git, darcs, or mercurial filestore. Pages and
uploaded files can be modified either directly via the VCS', s command-line tools
or through the wiki', s web interface. Pandoc is used for markup processing, so
pages may be written in (extended) markdown, reStructuredText, LaTeX, HTML, or
literate Haskell, and exported in ten different formats, including LaTeX,
ConTeXt, DocBook, RTF, OpenOffice ODT, and MediaWiki markup.

Notable features include

* plugins: dynamically loaded page transformations written in Haskell (see
'Network.Gitit.Interface')

* conversion of TeX math to MathML for display in web browsers

* syntax highlighting of source code files and code snippets

* Atom feeds (site-wide and per-page)

* a library, 'Network.Gitit', that makes it simple to include a gitit wiki in
any happstack application


For usage information: ', gitit --help', .

Affected Software/OS:
'gitit' package(s) on Fedora 33.

Solution:
Please install the updated package(s).

CVSS Score:
4.0

CVSS Vector:
AV:N/AC:L/Au:S/C:N/I:N/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2020-5238
https://github.com/github/cmark-gfm/security/advisories/GHSA-7gc6-9qr5-hc85
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TCDHBTUFIOYRIS5HAS6PZNBNMB7IOAX3/
https://github.com/github/cmark-gfm/commit/85d895289c5ab67f988ca659493a64abb5fec7b4
CopyrightCopyright (C) 2020 Greenbone Networks GmbH

This is only one of 85075 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2020 E-Soft Inc. All rights reserved.