ALT Linux Sisyphus cybertalk
 help / color / mirror / Atom feed
* [cyber] I: 4.0/branch packages: +2 (6855)
@ 2010-08-07  1:53 QA Team Robot
  0 siblings, 0 replies; only message in thread
From: QA Team Robot @ 2010-08-07  1:53 UTC (permalink / raw)
  To: sisyphus-cybertalk

	2 UPDATED packages

typo3-dummy - Dummy site for TYPO3
* Fri Aug 06 2010 Michael Shigorin <mike@altlinux> 4.2.14-alt0.M40.1
- 4.2.14: regression fixes for important security fixes in 4.2.13
- 4.2.13: major/medium security fixes:
  + several XSS in backend (valid backend login required)
  + open redirection in backend (valid backend login required)
  + SQL injection in some backend record editing forms
    (special backend login/configuration required)
  + arbitrary code execution depending on server configuration
    (valid backend login required to upload .phtml)
  + webroot path disclosure possible with defective extensions
  + Extension Manager: XSS and arbitrary file access
    (valid backend admin login required)
  + form content element data check failure (spam abuse)
  + header injection with jumpurl feature
  + frontend login box: open redirection, XSS
  + install tool: session fixation
  + t3lib_htmlmail includes the exact CMS version in headers
* Sat Jul 04 2009 Michael Shigorin <mike@altlinux> 4.2.8-alt0.M40.1

typo3_src - A free, feature rich, Content Management Framework/System
* Fri Aug 06 2010 Michael Shigorin <mike@altlinux> 4.2.14-alt0.M40.1
- 4.2.14
* Sat Jul 04 2009 Michael Shigorin <mike@altlinux> 4.2.8-alt0.M40.1

Total 6855 source packages.


^ permalink raw reply	[flat|nested] only message in thread
only message in thread, other threads:[~2010-08-07  1:53 UTC | newest]

Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2010-08-07  1:53 [cyber] I: 4.0/branch packages: +2 (6855) QA Team Robot

ALT Linux Sisyphus cybertalk

This inbox may be cloned and mirrored by anyone:

	git clone --mirror http://lore.altlinux.org/sisyphus-cybertalk/0 sisyphus-cybertalk/git/0.git

	# If you have public-inbox 1.1+ installed, you may
	# initialize and index your mirror using the following commands:
	public-inbox-init -V2 sisyphus-cybertalk sisyphus-cybertalk/ http://lore.altlinux.org/sisyphus-cybertalk \
		sisyphus-cybertalk@lists.altlinux.org sisyphus-cybertalk@lists.altlinux.ru sisyphus-cybertalk@lists.altlinux.com
	public-inbox-index sisyphus-cybertalk

Example config snippet for mirrors.
Newsgroup available over NNTP:
	nntp://lore.altlinux.org/org.altlinux.lists.sisyphus-cybertalk


AGPL code for this site: git clone https://public-inbox.org/public-inbox.git