TEMP-0000000-ED76D0

NameTEMP-0000000-ED76D0
DescriptionSanitizing and other XSS protections
SourceAutomatically generated temporary name. Not for external reference.

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
spip (PTS)stretch3.1.4-4~deb9u3vulnerable
stretch (security)3.1.4-4~deb9u5vulnerable
buster3.2.4-1+deb10u7vulnerable
buster (security)3.2.4-1+deb10u8fixed
bullseye3.2.11-3+deb11u3vulnerable
bullseye (security)3.2.11-3+deb11u4fixed
bookworm, sid4.1.2+dfsg-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
spipsourcebuster3.2.4-1+deb10u8
spipsourcebullseye3.2.11-3+deb11u4
spipsource(unstable)4.1.2+dfsg-1

Notes

https://git.spip.net/spip/spip/commit/3b99287c9e1f7b9aee4c7e22b2a233fde5becd86
https://git.spip.net/spip/spip/commit/edb6a01c6dd2420ed5e125385252d37b86f93d68
https://git.spip.net/spip-team/securite/issues/3597 (not public)
https://git.spip.net/spip/spip/commit/b28e1f9a39dd54e0f0bbfe3b211160e71d2562b7
https://git.spip.net/spip-team/securite/issues/3602 (not public)
https://git.spip.net/spip/spip/commit/772a4baeda4eed24cbe8953fa60e7c7dcd6859a2
https://git.spip.net/spip-team/securite/issues/3698 (not public)
https://git.spip.net/spip/spip/commit/e9a03a38d5ee606b79d795f8e28c29d4eb74838e
https://git.spip.net/spip-team/securite/issues/3702 (not public)
https://git.spip.net/spip/spip/commit/d99890f66906ab52aa18f9df6109e694192bc54e
https://git.spip.net/spip-team/securite/issues/3703 (not public)
https://git.spip.net/spip/spip/commit/97845aa30aa8d845d88b86715eab53b1de5e9c6d
https://git.spip.net/spip-team/securite/issues/3728 (not public)
https://git.spip.net/spip/spip/commit/754677579b34a1705a83b8d2674baaba17472b4d
https://git.spip.net/spip/spip/commit/871777b0f56ce92c26fde3a3a53c625eb68dcff6
https://git.spip.net/spip-team/securite/issues/4494 (not public)
https://git.spip.net/spip/spip/commit/901f583021938d4b1b1632cc8ec51950a1f3e988
https://git.spip.net/spip/spip/commit/ac67fc5be53e2e085c0599144a217b440dd72fa1
https://git.spip.net/spip/spip/commit/2ce34e62ebe457d06339d5b3cb92852d1d80635c
https://git.spip.net/spip/spip/commit/8283532c94dac9f08c1fd250b433491d3fe22c84
https://git.spip.net/spip-team/securite/issues/3733 (not public)
https://git.spip.net/spip/svp/commit/bf0ff95ac535f1aa53e6a946ea739fd71106f182
https://blog.spip.net/Mise-a-jour-de-maintenance-et-securite-sortie-de-SPIP-4-1-2-SPIP-4-0-7-SPIP-3-2.html?lang=fr

Search for package or bug name: Reporting problems