Dec. 5, 2020 Pavel Zilke 9.5.3-alt1
- New version 9.5.3
- This is a security release, upgrading is recommended
- Security fixes:
+ CVE-2020-27662 : Insecure Direct Object Reference on ajax/comments.php
+ CVE-2020-27663 : Insecure Direct Object Reference on ajax/getDropdownValue.php
+ CVE-2020-26212 : Any CalDAV calendars is read-only for every authenticated user
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ALT Linux | 10 | src | glpi-9.5.12-alt1.src.rpm | < 9.5.3-alt1 | glpi-9.5.12-alt1.src.rpm |
ALT Linux | 10 | noarch | glpi-9.5.12-alt1.noarch.rpm | < 9.5.3-alt1 | glpi-9.5.12-alt1.noarch.rpm |
ALT Linux | 10 | noarch | glpi-apache2-9.5.12-alt1.noarch.rpm | < 9.5.3-alt1 | glpi-apache2-9.5.12-alt1.noarch.rpm |
ALT Linux | 10 | noarch | glpi-php7-9.5.12-alt1.noarch.rpm | < 9.5.3-alt1 | glpi-php7-9.5.12-alt1.noarch.rpm |