[Koha-bugs] [Bug 6629] [security] insecure use of Cookie for language selection

bugzilla-daemon at bugs.koha-community.org bugzilla-daemon at bugs.koha-community.org
Sun Nov 27 09:26:35 CET 2011


http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=6629

--- Comment #22 from Frère Sébastien Marie <semarie-koha at latrappe.fr> 2011-11-27 08:26:35 UTC ---
When I check versus git, the following patchs are applied:
 - master (not vulnerable) : patch applied
 - 3.6.x (not vulnerable) : patch not found
 - 3.4.x *vulnerable* : patch not found
 - 3.2.x *vulnerable* : patch not found

Could you push patch for vulnerables versions too ?

As an exploit was published, and the problem quickly corrected, it is not very
good to have patch not pushed quickly too for vulnerable versions.

Thanks

-- 
Configure bugmail: http://bugs.koha-community.org/bugzilla3/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA Contact for the bug.
You are watching all bug changes.


More information about the Koha-bugs mailing list