Le vendredi 25 janvier 2013 à 07:15 +0100, Christian PERRIER a écrit : > Quoting Niels Thykier ([email protected]): > > > Pierre Chifflier <[email protected]> > > glpi > > I looked briefly at the RC bug for glpi (#694642). It seems that an > embedded Flash file provided with the package has a security issue.
It does, however: - the SWF file is not used from the JS library, which points directly to the upstream site (ugh), - the code that makes use of it is not used from anywhere in the GLPI code itself (re-ugh). So all in all it is ugly (as in most PHP webapps), but it doesn’t seem release-critical to me. -- .''`. Josselin Mouette : :' : `. `' `- -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected] Archive: http://lists.debian.org/1359104000.27214.28.camel@pi0307572
