On 22.04.2006 23:14 Don Armstrong wrote: > > Unfortunatly, even upgrading to 3.8.1 won't get rid of all of the > security issues. Furthermore, the way in which upstream is supporting > this package is rather suboptimal at best, as the fixes they've made > do not include patches. [Also, the CVE vulnerability has been extant > for 3 months now, and there hasn't been an update from upstream about > it.] >
[CVE-2006-0327] is fixed in 4.0. http://lists.netfielders.de/pipermail/typo3-team-core/2006-January/001296.html -- cheers, Steffen -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
