Hi, this week I noticed that gallery contain an XSS [1] that is still unfixed in sarge. I was reported in August 2005 (!). The maintainer mentioned that he forwarded a patch to the security team.
So my question is: what's blocking the security update? bye, Martin [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=325285 -- Powered by Debian GNU / Linux
signature.asc
Description: OpenPGP digital signature