Coin,
Quoting Michael Gilbert michael.s.gilb...@gmail.com:
Your package embeds the following prototype.js versions:
sid: 1.6.0.3 (not affected)
lenny: 1.6.0.1
etch: N/A
You're right, libactiveldap-ruby-doc has a prototype.js file included.
Happily, it is not part of the software
package: activeldap
version: 1.0.1-1
severity: serious
tags: security
Hi,
Your package contains an embedded version of prototype.js that is
vulnerable to either CVE-2007-2383 (affecting prototype.js before 1.5.1)
[0], CVE-2008-7220 (affecting prototype.js before 1.6.0.2) [1], or both.
Your
2 matches
Mail list logo