Hi.
Le samedi 04 septembre 2010 à 16:31 -0400, Michael Gilbert a écrit :
> On Sat, 04 Sep 2010 20:53:33 +0200 sils wrote:
>
> > version 595510 1.2.x
> > forwarded 595510 http://www.mantisbt.org/bugs/view.php?id=12312
> > thanks
>
> according to that bug report the issue is actually in nusoap. i
Processing commands for cont...@bugs.debian.org:
> found 595510 1.1.8+dfsg-5
Bug #595510 [mantis] mantis: CVE-2010-2574 xss vulnerability
Bug Marked as found in versions mantis/1.1.8+dfsg-5.
> found 595510 1.1.6+dfsg-2lenny1
Bug #595510 [mantis] mantis: CVE-2010-2574 xss vulnerability
Bug Marked a
found 595510 1.1.8+dfsg-5
found 595510 1.1.6+dfsg-2lenny1
forwarded 595510 http://www.mantisbt.org/bugs/view.php?id=12230
tag 595510 +patch
thanks
Hi all,
Sorry, it was a misunderstanding.
As referenced in [0], reported by Secunia, SA40832 [1] (which refers to
(CVE-2010-2574 [2]), there is an XS
On Sat, 04 Sep 2010 20:53:33 +0200 sils wrote:
> version 595510 1.2.x
> forwarded 595510 http://www.mantisbt.org/bugs/view.php?id=12312
> thanks
according to that bug report the issue is actually in nusoap. i see
that mantis already depends on that. if you are completely sure that
mantis doesn'
Processing commands for cont...@bugs.debian.org:
> notforwarded 595510
Bug #595510 [mantis] mantis: CVE-2010-2574 xss vulnerability
Unset Bug forwarded-to-address
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
595510: http://bugs.debian.org/cgi-bin/bugreport.cgi?
notforwarded 595510
thanks
I'm afraid there's a misunderstanding here :
http://www.mantisbt.org/bugs/view.php?id=12312 refers to a problem on
the copy of nusoap shipped with Mantis upstream, and which doesn't
affect the mantis package, IMHO.
For the Debian package of nusoap, it's handled in #5952
Processing commands for cont...@bugs.debian.org:
> version 595510 1.2.x
Unknown command or malformed arguments to command.
> forwarded 595510 http://www.mantisbt.org/bugs/view.php?id=12312
Bug #595510 [mantis] mantis: CVE-2010-2574 xss vulnerability
Set Bug forwarded-to-address to
'http://www.ma
version 595510 1.2.x
forwarded 595510 http://www.mantisbt.org/bugs/view.php?id=12312
thanks
Hi,
I tested this issue under version 1.1.6+dfsg-2lenny1 (lenny),
1.1.8+dfsg-5 (sid) and 1.2.1-1 (being packaged, soon in experimental),
so I am reassigning this issue to version 1.2.x
This bug does not
Package: mantis
Version: 1.1.8+dfsg-5
Severity: serious
Tags: security
Hi,
the following CVE (Common Vulnerabilities & Exposures) id was
published for mantis. After a quick search, I couldn't find enough info
to be able to check whether this affects older versions. Please check.
CVE-2010-2574[0
9 matches
Mail list logo
