[Secure-testing-team] Bug#584671: [lxr-cvs] new stable version fix security hole
Xavier Brochard
xavier at alternatif.org
Sat Jun 5 13:00:05 UTC 2010
Package: lxr-cvs
Version: 0.9.5+cvs20071020-1
Severity: serious
Tags: security
X-Debbugs-CC: secure-testing-team at lists.alioth.debian.org
--- Please enter the report below this line. ---
Please update lxr-cvs to the new stable version. The new version 0.9.8 of
lxrng fix several cross-site scripting vulnerabilities (CVE-2009-4497) reported
in bug #575745
The new version was published 2010-01-15 on
http://sourceforge.net/projects/lxr/
regards
xavier
--- System information. ---
Architecture: amd64
Kernel: Linux 2.6.32-5-amd64
Debian Release: squeeze/sid
500 unstable ftp.fr.debian.org
500 unstable debian-multimedia.gnali.org
500 instable download.tuxfamily.org
101 experimental-snapshots qt-kde.debian.net
101 experimental ftp2.fr.debian.org
--- Package information. ---
Depends (Version) | Installed
=====================================-+-==============
apache2 | 2.2.15-5
OR apache-ssl |
OR apache-perl |
OR apache |
OR httpd-cgi |
exuberant-ctags | 1:5.8-2
perl5 |
libfile-mmagic-perl | 1.27-1
perl (>= 5.6.0-16) | 5.10.1-12
Recommends (Version) | Installed
================================-+-===========
mysql-server |
OR postgresql | 8.4.4-1
libdbd-mysql-perl | 4.014-1
OR libdbd-pg-perl |
Suggests (Version) | Installed
===================================-+-===========
swish-e (>= 2.1) |
libapache2-mod-perl2 |
OR libapache-mod-perl |
Xavier
xavier at alternatif.org - 09 54 06 16 26
More information about the Secure-testing-team
mailing list