FreeLists / dokuwiki / [dokuwiki] Re: Security Tracker "bug", Request Patch

[dokuwiki] || [Date Prev] [06-2006 Date Index] [Date Next] || [Thread Prev] [06-2006 Thread Index] [Thread Next]

[dokuwiki] Re: Security Tracker "bug", Request Patch

From: burt <burt@xxxxxxxxxxxx>
To: dokuwiki@xxxxxxxxxxxxx
Date: Fri, 2 Jun 2006 12:35:22 -0400


How can the lastest release version (non-dev tracking sites) patch this?

I.e., diffs, against the latest release, or re-release with a patch number.

Overall, brings up the question of release engineering and security patches.

-burt

On Jun 2, 2006, at 12:13 PM, Kevin Lee Phair II wrote:

Just noticed that this title came up in from securitytracker.com yesterday:

DokuWiki Input Validation Flaw in Profile 'Fullname' Field Permits Cross-Site Scripting Attacks

The link is here: http://securitytracker.com/alerts/2006/Jun/ 1016192.html but doesn't seem to exist any longer. Is it safe to assume this was a false report that was therefore removed? -- DokuWiki mailing list - more info at http://wiki.splitbrain.org/wiki:mailinglist


--
DokuWiki mailing list - more info at
http://wiki.splitbrain.org/wiki:mailinglist

Follow-Ups:
- [dokuwiki] Re: Security Tracker "bug", Request Patch
  - From: Kevin Lee Phair II

References:
- [dokuwiki] Security Tracker "bug"
  - From: Kevin Lee Phair II