Overview
Request 488880 accepted
MantisBT 1.3.10
* CVE-2017-7615: Account verification page allows resetting any
user's password (bsc#1034333)
- includes changes from 1.3.9:
* Installation on MSSQL fails at step 209
* CVE-2017-7241: XSS in move_attachments_page.php (bsc#1031807)
* CVE-2017-7309: XSS in adm_config_report.php (bsc#1031807)
* File upload to MS-SQL not working
- includes changes from 1.3.8:
* CVE-2017-6973: XSS in adm_config_report.ph (bsc#1031807)p
* Resolution changes in some cases when closing issues
- includes changes from 1.3.7:
* documentation fixes
* typo error for the email_receive_own parameter
* drop CVE-2017-6797.patch, now upstream
- Created by AndreasStieger
- In state accepted
-
Package maintainer:
weberho
Request History
AndreasStieger created request
MantisBT 1.3.10
* CVE-2017-7615: Account verification page allows resetting any
user's password (bsc#1034333)
- includes changes from 1.3.9:
* Installation on MSSQL fails at step 209
* CVE-2017-7241: XSS in move_attachments_page.php (bsc#1031807)
* CVE-2017-7309: XSS in adm_config_report.php (bsc#1031807)
* File upload to MS-SQL not working
- includes changes from 1.3.8:
* CVE-2017-6973: XSS in adm_config_report.ph (bsc#1031807)p
* Resolution changes in some cases when closing issues
- includes changes from 1.3.7:
* documentation fixes
* typo error for the email_receive_own parameter
* drop CVE-2017-6797.patch, now upstream
aeneas_jaissle accepted request
Thanks again!
