| non port: german/bugzilla/distinfo |
Number of commits found: 9 |
|
Thursday, 21 Feb 2013
|
08:48 ohauer 
- update german bugzilla templates
  |
|
Friday, 16 Nov 2012
|
09:03 ohauer
- update german and russian bugzilla templates to official new versions
- remove hotfixes from german templates
Feature safe: yes
|
|
Wednesday, 5 Sep 2012
|
19:05 ohauer
- update bugzilla language tempates
|
|
Sunday, 29 Jul 2012
|
09:58 ohauer
- update to official release (just published)
|
|
Tuesday, 10 Apr 2012
|
05:15 ohauer
- update to 4.0.5
Vulnerability Details
=====================
Class: Cross-Site Request Forgery
Versions: 4.0.2 to 4.0.4, 4.1.1 to 4.2rc2
Fixed In: 4.0.5, 4.2
Description: Due to a lack of validation of the enctype form
attribute when making POST requests to xmlrpc.cgi,
a possible CSRF vulnerability was discovered. If a user
visits an HTML page with some malicious HTML code in it,
an attacker could make changes to a remote Bugzilla installation
on behalf of the victim's account by using the XML-RPC API
on a site running mod_perl. Sites running under mod_cgi
are not affected. Also the user would have had to be
already logged in to the target site for the vulnerability
to work.
References: https://bugzilla.mozilla.org/show_bug.cgi?id=725663
CVE Number: CVE-2012-0453
Approved by: skv (implicit)
|
|
Monday, 13 Feb 2012
|
21:14 ohauer
- update german bugzilla templates
|
|
Thursday, 5 Jan 2012
|
17:30 ohauer
- update german bugzilla translations
|
|
Sunday, 14 Aug 2011
|
18:56 ohauer
- update german bugzilla language templates
|
|
Saturday, 11 Jun 2011
|
19:04 ohauer
- add German localization for Bugzilla bug tracking system
|
Number of commits found: 9 |
As an Amazon Associate I earn from qualifying purchases.