Package: egroupware-core Severity: grave Tags: security Your package seems to embed a copy of wz_tooltip, for which a security bug has been reported:
| Unspecified vulnerability in Walter Zorn wz_tooltip.js (aka | wz_tooltips) before 4.01, as used by eGroupWare before 1.2.107-2 and | other packages, has unknown impact and remote attack vectors. <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3154> Please upgrade the included copy, and backport the changes to stable (if necessary). -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]