Thanks a lot! I'm building a package now.
Regards,
// Ola
On Thu, Mar 22, 2007 at 01:14:56PM +, Marcos Marado wrote:
> On Thursday 22 March 2007 13:07, Marcos Marado wrote:
> > > Ola Lundqvist <[EMAIL PROTECTED]> wrote:
> > >
> > > Interesting! Will you create a fix for this?
> >
> > I took
On Thursday 22 March 2007 13:07, Marcos Marado wrote:
> > Ola Lundqvist <[EMAIL PROTECTED]> wrote:
> >
> > Interesting! Will you create a fix for this?
>
> I took from the diff between imp-h3-4.1.4-rc1 and imp-h3-4.1.4 a working
> patch to fix the XSS vulnerability. I'm not really sure if I should
> Ola Lundqvist <[EMAIL PROTECTED]> wrote:
>
> Interesting! Will you create a fix for this?
I took from the diff between imp-h3-4.1.4-rc1 and imp-h3-4.1.4 a working patch
to fix the XSS vulnerability. I'm not really sure if I should submit a patch
that would work against imp4_4.1.3-2 (in etch) o
Hi
Interesting! Will you create a fix for this?
Regards,
// Ola
On Fri, Mar 16, 2007 at 08:33:26AM +0100, Lionel Elie Mamane wrote:
> Package: imp4
> Version: 4.0.2-1
> Severity: grave
> Tags: security
> Justification: security hole when package used
>
> Upstream changelog of new version says:
Package: imp4
Version: 4.0.2-1
Severity: grave
Tags: security
Justification: security hole when package used
Upstream changelog of new version says:
This (..) fixes two cross site scripting vulnerabilities.
Major changes compared to the IMP H3 (4.1.4-RC1) version are:
* Fixed XSS vulnerabili
5 matches
Mail list logo
