http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=6628
Paul Poulain <[email protected]> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |ASSIGNED CC| |[email protected] Version|unspecified |rel_3_6 Patch Status|Signed Off |Patch Pushed AssignedTo|[email protected] |[email protected] Severity|critical |normal --- Comment #6 from Paul Poulain <[email protected]> 2011-11-28 09:09:39 UTC --- This vulnerability would allow anyone reading any .tt file on the server. As /etc/password is not ending by .tt, this problem is much less critical than the 6629 one ! That's why, Katrin, you didn't see any difference before and after applying the patch. The fix is usefull though, as it's a vulnerability, so it's pushed. Patch pushed, please test -- Configure bugmail: http://bugs.koha-community.org/bugzilla3/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the QA Contact for the bug. You are watching all bug changes. _______________________________________________ Koha-bugs mailing list [email protected] http://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-bugs website : http://www.koha-community.org/ git : http://git.koha-community.org/ bugs : http://bugs.koha-community.org/
