** Changed in: htdig (Debian)
Status: Unknown => Fix Released
--
[CVE-2007-6110] Cross-site scripting (XSS) vulnerability in htsearch in htdig
3.2.0b6
https://bugs.launchpad.net/bugs/172277
You received this bug notification because you are a member of Ubuntu
Bugs, which is the bug contac
** Changed in: htdig (Ubuntu Edgy)
Status: Fix Committed => Fix Released
--
[CVE-2007-6110] Cross-site scripting (XSS) vulnerability in htsearch in htdig
3.2.0b6
https://bugs.launchpad.net/bugs/172277
You received this bug notification because you are a member of Ubuntu
Bugs, which is the
htdig (1:3.2.0b6-3ubuntu0.1) feisty-security; urgency=low
* SECURITY UPDATE: Cross-site scripting via crafted sort type. (LP: #172277)
* htsearch/Display.cc, libhtdig/ResultFetch.cc: Don't display the sort type
if it is unrecognised.
* References:
CVE-2007-6110
-- William Grant <[E
htdig (1:3.2.0b6-3.1ubuntu0.1) gutsy-security; urgency=low
* SECURITY UPDATE: Cross-site scripting via crafted sort type. (LP: #172277)
* htsearch/Display.cc, libhtdig/ResultFetch.cc: Don't display the sort type
if it is unrecognised.
* References:
CVE-2007-6110
-- William Grant <[
Thanks for preparing this! I've uploaded it to the security queue; it
should be published shortly.
** Changed in: htdig (Ubuntu Edgy)
Status: In Progress => Fix Committed
** Changed in: htdig (Ubuntu Feisty)
Status: In Progress => Fix Committed
** Changed in: htdig (Ubuntu Gutsy)
** Attachment added: "gutsy debdiff"
http://launchpadlibrarian.net/10680300/gutsy.diff
--
[CVE-2007-6110] Cross-site scripting (XSS) vulnerability in htsearch in htdig
3.2.0b6
https://bugs.launchpad.net/bugs/172277
You received this bug notification because you are a member of Ubuntu
Bugs, w
** Attachment added: "feisty debdiff"
http://launchpadlibrarian.net/10680299/feisty.diff
--
[CVE-2007-6110] Cross-site scripting (XSS) vulnerability in htsearch in htdig
3.2.0b6
https://bugs.launchpad.net/bugs/172277
You received this bug notification because you are a member of Ubuntu
Bugs,
** Attachment added: "edgy debdiff"
http://launchpadlibrarian.net/10680298/edgy.diff
--
[CVE-2007-6110] Cross-site scripting (XSS) vulnerability in htsearch in htdig
3.2.0b6
https://bugs.launchpad.net/bugs/172277
You received this bug notification because you are a member of Ubuntu
Bugs, whi
It would seem that Dapper's does not display the error message
containing the vulnerability.
** Changed in: htdig (Ubuntu Dapper)
Status: In Progress => Invalid
--
[CVE-2007-6110] Cross-site scripting (XSS) vulnerability in htsearch in htdig
3.2.0b6
https://bugs.launchpad.net/bugs/172277
htdig (1:3.2.0b6-3.1ubuntu1) hardy; urgency=low
* SECURITY UPDATE: Cross-site scripting via crafted sort type. (LP: #172277)
* htsearch/Display.cc, libhtdig/ResultFetch.cc: Don't display the sort type
if it is unrecognised.
* References:
CVE-2007-6110
-- William Grant <[EMAIL PROTE
** Changed in: htdig (Ubuntu Dapper)
Assignee: (unassigned) => William Grant (fujitsu)
Status: New => In Progress
** Changed in: htdig (Ubuntu Edgy)
Assignee: (unassigned) => William Grant (fujitsu)
Status: New => In Progress
** Changed in: htdig (Ubuntu Feisty)
Assig
** Bug watch added: Debian Bug tracker #453278
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=453278
** Also affects: htdig (Debian) via
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=453278
Importance: Unknown
Status: Unknown
--
[CVE-2007-6110] Cross-site scripting (XSS) vul
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2007-6110
--
[CVE-2007-6110] Cross-site scripting (XSS) vulnerability in htsearch in htdig
3.2.0b6
https://bugs.launchpad.net/bugs/172277
You received this bug notification because you are a member of Ubuntu
Bugs, which is the bug
You can find this patch in
http://mirror.atrpms.net/fedora/linux/updates/8/SRPMS/htdig-3.2.0b6-13.fc8.src.rpm
https://www.redhat.com/archives/fedora-package-announce/2007-November/msg01025.html
** Attachment added: "fedora patch for this issue"
http://launchpadlibrarian.net/10664988/htdig-3.
Your link is broken. I think this one should work (and is what that one
was meant to be):
http://sourceforge.net/mailarchive/forum.php?thread_name=200709251310.55835.mskibbe%40suse.de&forum_name
=htdig-dev
--
[CVE-2007-6110] Cross-site scripting (XSS) vulnerability in htsearch in htdig
3.2.0b6
** Visibility changed to: Public
--
[CVE-2007-6110] Cross-site scripting (XSS) vulnerability in htsearch in htdig
3.2.0b6
https://bugs.launchpad.net/bugs/172277
You received this bug notification because you are a member of Ubuntu
Bugs, which is the bug contact for Ubuntu.
--
ubuntu-bugs maili
16 matches
Mail list logo