Package: glpi Severity: serious Tags: security patch Hi,
phpCAS, which is embedded by GLPI, has fixed an XSS vulnerablity. Details and the patch are availbale at their bug tracker: http://www.ja-sig.org/issues/browse/PHPCAS-52 Can you please see that this bug gets fixed in the GLPI copy of phpCAS, and ensure that upstream GLPI includes the fix aswell? thanks, Thijs
signature.asc
Description: This is a digitally signed message part.