Hi David and Adam,
On Sat, Apr 25, 2015 at 10:17:33PM +0200, Salvatore Bonaccorso wrote:
> Hi Adam, hi David,
>
> On Sat, Apr 25, 2015 at 05:52:58PM +0100, Adam D. Barratt wrote:
> > On Sat, 2015-04-18 at 16:09 -0400, David Prévot wrote:
> > [...]
> > > The said period now started (yet I can’t fi
Hi,
On Sat, Apr 25, 2015 at 10:17:33PM +0200, Salvatore Bonaccorso wrote:
> David, CVE-2015-3011 is exploitable if a victim user tries to edit a
> specially crafted contact item which he has access to?
Indeed, I managed to craft a group name, allowing to inject JavaScript
when editing the contac
Hi Adam, hi David,
On Sat, Apr 25, 2015 at 05:52:58PM +0100, Adam D. Barratt wrote:
> On Sat, 2015-04-18 at 16:09 -0400, David Prévot wrote:
> [...]
> > The said period now started (yet I can’t find any definition of what
> > that means exactly), and the three security issues affecting owncloud,
>
On Sat, 2015-04-18 at 16:09 -0400, David Prévot wrote:
[...]
> The said period now started (yet I can’t find any definition of what
> that means exactly), and the three security issues affecting owncloud,
> having their targeted fixes available in Sid, still affect the version
> in Jessie.
>
> Add
Tags -1 - moreinfo
[ Jonathan Wiltshire tagged this issue as moreinfo after Julien’s
question. I hope it’s OK to untag it since there has been a reply
immediately after that, followed by another upload (five days ago). ]
On Mon, Apr 13, 2015 at 12:53:19AM -0400, David Prévot wrote:
> On Sun,
Control: retitle -1 unblock: owncloud/7.0.4+dfsg-4
On Sun, Apr 12, 2015 at 12:15:28PM -0400, David Prévot wrote:
> On Sun, Apr 12, 2015 at 02:46:52PM +0200, Julien Cristau wrote:
> > On Thu, Mar 26, 2015 at 15:26:37 -0400, David Prévot wrote:
> >
> > > - the upgrade script should be run as the sa
6 matches
Mail list logo
