Summary: | <net-analyzer/smokeping-2.6.9 : XSS flaw (incomplete fix for CVE-2012-0790) (CVE-2013-4158) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | netmon |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://bugzilla.redhat.com/show_bug.cgi?id=986521 | ||
Whiteboard: | B4 [noglsa] | ||
Package list: | Runtime testing required: | --- |
Description
Agostino Sarubbo
2013-07-20 08:03:00 UTC
2.6.9 is already the only version in tree and is a stable package. GLSA? (In reply to Chris Reffett from comment #1) > 2.6.9 is already the only version in tree and is a stable package. GLSA? Usually the security team do not send glsa for the XSS. (In reply to Agostino Sarubbo from comment #2) > (In reply to Chris Reffett from comment #1) > > 2.6.9 is already the only version in tree and is a stable package. GLSA? > > Usually the security team do not send glsa for the XSS. And by "[u]sually" you intend to except some 57 cases? I guess there is more to it than that... Yeah, uh, I'll leave it for a vote and the security team can yell at me if this was supposed to stay closed :) GLSA vote: no GLSA vote: no. Closing as [noglsa] |