[DRE-maint] [Bug 959187] Re: Mass assignment security vulnerability in Redmine
Jamie Strandboge
jamie at ubuntu.com
Sun Mar 25 15:28:58 UTC 2012
This was fixed in 1.3.2+dfsg1-1 on Precise.
--
You received this bug notification because you are subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/959187
Title:
Mass assignment security vulnerability in Redmine
Status in “redmine” package in Ubuntu:
Fix Released
Status in “redmine” source package in Lucid:
Confirmed
Status in “redmine” source package in Precise:
Fix Released
Bug description:
Redmine has many mass assignment security vulnerabilities. See
http://www.redmine.org/issues/10390 for details.
Version 0.9.3-1 (Lucid Lynx) seems to be affected. Upstream reported
version 1.3.0 (Precise Pangolin) and 1.3.1 as vulnerable.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/redmine/+bug/959187/+subscriptions
More information about the Pkg-ruby-extras-maintainers
mailing list