This bug was fixed in the package typo3-src - 4.1.2+debian-1ubuntu1
---------------
typo3-src (4.1.2+debian-1ubuntu1) hardy; urgency=low
* SECURITY UPDATE: arbitary SQL injection. (LP: #180300)
- debian/patches/03_CVE-2007-6381.dpatch: Ensure that the page ID is in
fact an integer. Patch from Debian.
- References:
+ CVE-2007-6381
-- William Grant <[EMAIL PROTECTED]> Sat, 29 Mar 2008 23:48:31 +1100
** Changed in: typo3-src (Ubuntu Hardy)
Status: Triaged => Fix Released
--
[typo3-src] [CVE-2007-6381] SQL injection vulnerability
https://bugs.launchpad.net/bugs/180300
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
