Xavier Brochard
2010-Jun-05 13:00 UTC
[Secure-testing-team] Bug#584671: [lxr-cvs] new stable version fix security hole
Package: lxr-cvs Version: 0.9.5+cvs20071020-1 Severity: serious Tags: security X-Debbugs-CC: secure-testing-team at lists.alioth.debian.org --- Please enter the report below this line. --- Please update lxr-cvs to the new stable version. The new version 0.9.8 of lxrng fix several cross-site scripting vulnerabilities (CVE-2009-4497) reported in bug #575745 The new version was published 2010-01-15 on http://sourceforge.net/projects/lxr/ regards xavier --- System information. --- Architecture: amd64 Kernel: Linux 2.6.32-5-amd64 Debian Release: squeeze/sid 500 unstable ftp.fr.debian.org 500 unstable debian-multimedia.gnali.org 500 instable download.tuxfamily.org 101 experimental-snapshots qt-kde.debian.net 101 experimental ftp2.fr.debian.org --- Package information. --- Depends (Version) | Installed =====================================-+-=============apache2 | 2.2.15-5 OR apache-ssl | OR apache-perl | OR apache | OR httpd-cgi | exuberant-ctags | 1:5.8-2 perl5 | libfile-mmagic-perl | 1.27-1 perl (>= 5.6.0-16) | 5.10.1-12 Recommends (Version) | Installed ================================-+-==========mysql-server | OR postgresql | 8.4.4-1 libdbd-mysql-perl | 4.014-1 OR libdbd-pg-perl | Suggests (Version) | Installed ===================================-+-==========swish-e (>= 2.1) | libapache2-mod-perl2 | OR libapache-mod-perl | Xavier xavier at alternatif.org - 09 54 06 16 26