Le vendredi 25 janvier 2013 à 07:15 +0100, Christian PERRIER a écrit : > Quoting Niels Thykier (ni...@thykier.net): > > > Pierre Chifflier <pol...@debian.org> > > glpi > > I looked briefly at the RC bug for glpi (#694642). It seems that an > embedded Flash file provided with the package has a security issue.
It does, however: - the SWF file is not used from the JS library, which points directly to the upstream site (ugh), - the code that makes use of it is not used from anywhere in the GLPI code itself (re-ugh). So all in all it is ugly (as in most PHP webapps), but it doesn’t seem release-critical to me. -- .''`. Josselin Mouette : :' : `. `' `- -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/1359104000.27214.28.camel@pi0307572
