Steve Kemp wrote:
> > Hiki 0.8.0 - 0.8.6 is affected, it means that stable, testing and unstable
> > pacakges in Debian are affected. Please update hiki package.
> >
> > For more detail, see http://hikiwiki.org/en/advisory20070624.html
>
> Joey if you could allocate an ID I'll upload a fixed
> Hiki 0.8.0 - 0.8.6 is affected, it means that stable, testing and unstable
> pacakges in Debian are affected. Please update hiki package.
>
> For more detail, see http://hikiwiki.org/en/advisory20070624.html
Joey if you could allocate an ID I'll upload a fixed package.
Steve
--
--
To
Package: hiki
Severity: critical
Tags: security
Justification: causes serious data loss
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dear hiki maintainer,
Kazuhiro Nishiyama found a vulnerability in hiki that remote attacker
can delete arbitrary files by Hiki user's privilege, probably www-d
3 matches
Mail list logo