Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 13 Jan 2010 15:38:47 +0000
From:      Bruce Cran <bruce@cran.org.uk>
To:        www@FreeBSD.org
Subject:   Update of viewvc from 1.1-dev to 1.1.3 to fix security issues?
Message-ID:  <20100113153847.00000a8f@unknown>

next in thread | raw e-mail | index | archive | help
Hi,

Having recently setup a ViewVC server myself, I noticed that
http://svn.freebsd.org/viewvc is still reporting that it's using
version 1.1-dev, which I presume is a version from before 1.1.0?

Version 1.1.3 was released just before Christmas and fixed a couple of
new security issues. I don't know what configuration is being used, but
if you're running a version before 1.1.2 you might want to consider
upgrading since they have an XSS flaw.

Regards,
Bruce Cran

-- 
bruce@cran.org.uk
brucec@freebsd.org



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20100113153847.00000a8f>