** Changed in: mahara/1.0
Status: Fix Committed => Fix Released
** Changed in: mahara/1.1
Status: Fix Committed => Fix Released
** Changed in: mahara
Status: Fix Committed => Fix Released
** Visibility changed to: Public
--
Smarty version in Mahara 1.0 and 1.1 has security vulnerabilities
https://bugs.launchpad.net/bugs/491129
You received this bug notification because you are a member of Mahara
Core, which is the registrant for Mahara.
Status in Mahara ePortfolio: Fix Released
Status in Mahara 1.0 series: Fix Released
Status in Mahara 1.1 series: Fix Released
Bug description:
The version of smarty bundled with Mahara has three open vulnerabilities:
CVE-2008-4810
CVE-2008-4811
CVE-2009-1669
The Debian/Ubuntu packages are not vulnerable since they use the packaged
version of smarty.
_______________________________________________
Mailing list: https://launchpad.net/~mahara-core
Post to : [email protected]
Unsubscribe : https://launchpad.net/~mahara-core
More help : https://help.launchpad.net/ListHelp
