[pkg-mt-om-devel] Bug#774192: closed by Dominic Hargreaves <dom at earth.li> (Re: Bug#774192: CVE-2014-9057)
Salvatore Bonaccorso
carnil at debian.org
Sun Jan 4 12:36:08 UTC 2015
Control: reopen -1
Hi Dominic
> "Note this issue only affects Movable Type versions 6.0.6, 5.2.11
> and 5.18. It does not affect versions 6.0.5, 5.2.10, 5.17 and prior
> versions."
Netanel Rubin, the discoverer of the issue confirmed to me that the
information there seem just not correct, since he discovered the issue
in testing in 5.2.10. Thus reopening the bug.
I don't know if the parameter verification fixes is easily
backportable to 5.1.4 also (not checked that (yet)). In the light of
#734303, should movabletype-opensource maybe be removed also from
unstable?
Regards,
Salvatore
More information about the pkg-mt-om-devel
mailing list