I'm not sure how these things are handled in *-backports, but 1.1.2+dfsg-8~hardy1 in hardy-backports is definitely affected.
1.0.8-4 in hardy, 1.0.7+dfsg-1 in gutsy, and 0.19.4-2 in dapper may very well be affected as well. The CVE describes the issue as affecting "Mantis before 1.1.3 " I have not attempted to see if these patches will apply cleanly there. -- [CVE-2008-4688] [CVE-2008-4689] multiple security vulnerabilites https://bugs.launchpad.net/bugs/291531 You received this bug notification because you are a member of Ubuntu Bugs, which is a direct subscriber. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
