Zum Inhalt springen.
Sympa Menü

it-securitynotifies - [IT-SecNots] [SECURITY] [DSA 2320-1] dokuwiki regression fix

it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 2320-1] dokuwiki regression fix


Chronologisch Thread 
    < Chronologisch >      < Thread >
  • From: Thijs Kinkhorst <thijs AT debian.org>
  • To: debian-security-announce AT lists.debian.org
  • Subject: [IT-SecNots] [SECURITY] [DSA 2320-1] dokuwiki regression fix
  • Date: Sat, 8 Oct 2011 15:23:36 +0200 (CEST)
  • List-archive: <https://service.piratenpartei.de/pipermail/it-securitynotifies>
  • List-id: Sicherheitsankündigungen <it-securitynotifies.lists.piratenpartei.de>
  • Old-return-path: <thijs AT kinkhorst.com>
  • Priority: urgent
  • Resent-date: Sat, 8 Oct 2011 13:24:01 +0000 (UTC)
  • Resent-from: debian-security-announce AT lists.debian.org
  • Resent-message-id: <sBlUI_U8g3G.A.8IC.x7EkOB@liszt>
  • Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- -------------------------------------------------------------------------
Debian Security Advisory DSA-2320-1 security AT debian.org
http://www.debian.org/security/ Thijs Kinkhorst
October 8, 2011 http://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : dokuwiki
Vulnerability : regression fix
Problem type : remote
Debian-specific: no
CVE ID : CVE-2011-2510
Debian Bug : 644145

The dokuwiki update included in Debian Lenny 5.0.9 to address a cross
site scripting issue (CVE-2011-2510) had a regression rendering links
to external websites broken. This update corrects that regression.

For the oldstable distribution (lenny), this problem has been fixed in
version 0.0.20080505-4+lenny4.

We recommend that you upgrade your dokuwiki packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iQEcBAEBAgAGBQJOkE33AAoJEOxfUAG2iX57bPIH/jFv4OmdhGeS12FMyZW/oq9D
CW95YdhyuZA3xRSF9fViksRAFL6D1+5tAMp7mA4GfaYm35F7nmHyHvHfYUaEnz9j
AfTGlcSwDO0pXPhcLbNH28W3T/jv48fgOE3BKvjva7drKwyF4JHjRFFcYczeqMBe
SU75CwoEHqK9TnkMQJObRFkzfbx6+IJh51qjMdA4DpCzkwDSDPpNtXZpa+zoGdU+
ICLKqUK/UYwCpwu4ycIQ/r2oeDxzk9bf+PHRtNRe5JXU4az08wGBl+ClTK+u/vqT
Fw8VRnhltwpzN9eA34R8S058JGnNom3SVoMWJIIwvrxcnKfLNR6a8gsLUNZS6KQ=
=/Uh5
-----END PGP SIGNATURE-----


--
To UNSUBSCRIBE, email to debian-security-announce-REQUEST AT lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster AT lists.debian.org
Archive: 20111008132336.AE36159B89 AT kinkhorst.com">http://lists.debian.org/20111008132336.AE36159B89 AT kinkhorst.com



  • [IT-SecNots] [SECURITY] [DSA 2320-1] dokuwiki regression fix, Thijs Kinkhorst, 08.10.2011

Archiv bereitgestellt durch MHonArc 2.6.19.

Seitenanfang