This bug was fixed in the package mantis - 1.1.8+dfsg-6
---------------
mantis (1.1.8+dfsg-6) unstable; urgency=high
* debian/patches:
+ Added 08-CVE-2010-2574.diff: Fix for CVE-2010-2574 XSS
vulnerability when deleting categories that have been
maliciously named.(Closes: #595510)
-- Bhavani Shankar <[email protected]> Sun, 05 Sep 2010 01:58:01 +0200
** Changed in: mantis (Ubuntu)
Status: Fix Committed => Fix Released
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-2574
--
Please sync mantis 1.1.8+dfsg-6 (universe) from Debian unstable (main).
https://bugs.launchpad.net/bugs/631584
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
