WebCalendar / Patches / #599 Fix CVE-2011-3814

#599 Fix CVE-2011-3814

Status: pending

Owner: Craig Knudsen

Labels: None

Priority: 5

Updated: 2012-02-20

Created: 2011-09-28

Creator: Patrick Monnerat

Private: No

Fixes information disclosure vulnerability described at http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3814

IMPORTANT: SECURITY-RELATED

Discussion

Patrick Monnerat - 2011-09-28

WebCalendar 1.2.3 patch to fix CVE-2011-3814

WebCalendar-1.2.3-cve2011_3814.patch

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Patrick Monnerat - 2011-09-30

Patch for version 1.2.4

WebCalendar-1.2.4-cve2011_3814.patch

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Patrick Monnerat - 2011-09-30

Version 1.2.4 has the same vulnerabilities: patch for 1 2.4 added.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Craig Knudsen - 2012-02-20

This patch has been put into both the HEAD and REL_1_2 branches of CVS.

That means this changes will be included in the next 1.3 development release and future 1.1/1.2 releases.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Craig Knudsen - 2012-02-20

assigned_to: nobody --> cknudsen

status: open --> pending
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Log in to post a comment.