[Pkg-javascript-devel] Processed (with 5 errors): not a security issue

Debian Bug Tracking System owner at bugs.debian.org
Wed Nov 25 13:27:13 UTC 2009


Processing commands for control at bugs.debian.org:

> tags 557745 - security
Bug #557745 [yui] yui: CVE-2007-2385 javascript hijacking
Removed tag(s) security.
> severity 557745 minor
Bug #557745 [yui] yui: CVE-2007-2385 javascript hijacking
Severity set to 'minor' from 'important'

> The security issue described is the well known "Cross-Site Scripting"[1]
Unknown command or malformed arguments to command.

> problem. It's in the responsibility of a web application developer to guard
Unknown command or malformed arguments to command.

> the application that uses YUI against this issue, but it's not a security
Unknown command or malformed arguments to command.

> issue of any Javascript library.
Unknown command or malformed arguments to command.

> [1] http://en.wikipedia.org/wiki/Cross-site_scripting
Unknown command or malformed arguments to command.

Too many unknown commands, stopping here.

Please contact me if you need assistance.

Debian bug tracking system administrator
(administrator, Debian Bugs database)



More information about the Pkg-javascript-devel mailing list