evoteam team mailing list archive

Thread
Date

[Bug 227311]

To: evoteam@xxxxxxxxxxxxxxxxxxx
From: Jamie Strandboge <jamie@xxxxxxxxxx>
Date: Fri, 14 Oct 2011 20:22:22 -0000
Reply-to: Bug 227311 <227311@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Thank you for reporting this bug to Ubuntu. dapper has reached EOL
(End of Life) and is no longer supported. As a result, this bug
against dapper is being marked "Won't Fix". Please see
https://wiki.ubuntu.com/Releases for currently supported Ubuntu
releases.

Please feel free to report any other bugs you may find.

** Changed in: b2evolution (Ubuntu Dapper)
       Status: New => Won't Fix

-- 
You received this bug notification because you are a member of Evoteam,
which is subscribed to b2evolution in Ubuntu.
https://bugs.launchpad.net/bugs/227311

Title:
  [b2evolution] [CVE-2007-0175] cross site scripting

Status in “b2evolution” package in Ubuntu:
  Fix Released
Status in “b2evolution” source package in Dapper:
  Won't Fix
Status in “b2evolution” source package in Feisty:
  Won't Fix
Status in “b2evolution” package in Debian:
  Fix Released

Bug description:
  Binary package hint: b2evolution

  References:
  DSA-1568-1 (http://www.debian.org/security/2008/dsa-1568)

  Quoting:
  »"unsticky" discovered that b2evolution, a blog engine, performs
  insufficient input sanitising, allowing for cross site scripting.«

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/b2evolution/+bug/227311/+subscriptions