(Perdón por el cruce entre listas)
Acabo de recibir este mensaje en el que los desarrolladores dicen que
la version de OJS, OCS y OHS versión 2.3 tiene un problema de
seguridad, para solucionarlo hay que descargarse el parche que mencionan:
http://pkp.sfu.ca/bugzilla/show_bug.cgi?id=5563
Buenos días!
Reme Melero
-------- Mensaje original --------
Asunto: OJS, OCS, OHS Security Update
Fecha: Thu, 29 Jul 2010 13:57:29 -0600
De: Kevin Stranack <kstra...@sfu.ca>
Para: Kevin Stranack <kstra...@sfu.ca>
**Apologies for cross-posting**
The PKP development team has discovered a potential security risk in
OJS, OCS, and OHS, introduced with the 2.3 versions, which potentially
allows arbitrary PHP code execution, depending on how your server is
configured.
There have not yet been any reported cases of this vulnerability being
exploited.
If you are running an installation with a 2.2 or older version, no
action is required.
If you are running a 2.3 or newer version, please have your server
administrator apply the patch available here as soon as possible:
http://pkp.sfu.ca/bugzilla/show_bug.cgi?id=5563
To check which version you are currently using, go to About, and find
the About this Publishing/Conference System link.
If you are not responsible for maintaining the software used by your
journal, conference, or harvester, please forward this message on to the
appropriate person.
If you have any questions, please contact us at pkp-supp...@sfu.ca
Sincerely,
Kevin Stranack
Public Knowledge Project Team
----------------------------------------------------
Los archivos de IWETEL pueden ser consultados en:
http://listserv.rediris.es/archives/iwetel.html
----------------------------------------------------
