[request-tracker-maintainers] [jesse at bestpractical.com: [Rt-announce] SECURITY - Session Fixation Vulnerability in RT 3.0.0-3.8.5]
Dominic Hargreaves
dom at earth.li
Mon Nov 30 23:52:06 UTC 2009
On Mon, Nov 30, 2009 at 05:01:10PM +0000, Dominic Hargreaves wrote:
> I've been liasing with Jesse and the Debian security team about this
> issue and fixed packages should appear soon.
The following packages contain these fixes:
These three are currently with the security team:
request-tracker3.4/3.4.5-2+etch1 (etch)
request-tracker3.6/3.6.1-4+etch1 (etch)
request-tracker3.6/3.6.7-5+lenny3 (lenny)
This one has been uploaded:
request-tracker3.6/3.6.9-2 (sid)
I've committed all the changes to subversion now.
--
Dominic Hargreaves | http://www.larted.org.uk/~dom/
PGP key 5178E2A5 from the.earth.li (keyserver,web,email)
More information about the pkg-request-tracker-maintainers
mailing list