[request-tracker-maintainers] Bug#559020: Bug#559020: Session Fixation Vulnerability
Dominic Hargreaves
dom at earth.li
Tue Dec 1 10:43:10 UTC 2009
fixed 559020 3.6.9-2
thanks
On Tue, Dec 01, 2009 at 09:44:33AM +0100, Stefan Hornburg (Racke) wrote:
> Package: request-tracker3.6
> Tag: security
> Severity: critical
>
> http://blog.bestpractical.com/2009/11/session-fixation-vulnerability.html
>
> RT 3.8.6 is not affected.
Already fixed in unstable, packages for stable and oldstable are in
the hands of the security team.
--
Dominic Hargreaves | http://www.larted.org.uk/~dom/
PGP key 5178E2A5 from the.earth.li (keyserver,web,email)
More information about the pkg-request-tracker-maintainers
mailing list