TEMP-0000000-ED76D0

NameTEMP-0000000-ED76D0
DescriptionSanitizing and other XSS protections
SourceAutomatically generated temporary name. Not for external reference.

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
spip (PTS)jessie, jessie (lts)3.0.17-2+deb8u5vulnerable
stretch (security), stretch (lts), stretch3.1.4-4~deb9u5vulnerable
buster (security), buster, buster (lts)3.2.4-1+deb10u13fixed
bullseye3.2.11-3+deb11u10fixed
bullseye (security)3.2.11-3+deb11u7fixed
sid, trixie4.3.3+dfsg-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
spipsourcejessie(unfixed)end-of-life
spipsourcestretch(unfixed)end-of-life
spipsourcebuster3.2.4-1+deb10u8
spipsourcebullseye3.2.11-3+deb11u4
spipsource(unstable)4.1.2+dfsg-1

Notes

https://git.spip.net/spip/spip/commit/3b99287c9e1f7b9aee4c7e22b2a233fde5becd86
https://git.spip.net/spip/spip/commit/edb6a01c6dd2420ed5e125385252d37b86f93d68
https://git.spip.net/spip-team/securite/issues/3597 (not public)
https://git.spip.net/spip/spip/commit/b28e1f9a39dd54e0f0bbfe3b211160e71d2562b7
https://git.spip.net/spip-team/securite/issues/3602 (not public)
https://git.spip.net/spip/spip/commit/772a4baeda4eed24cbe8953fa60e7c7dcd6859a2
https://git.spip.net/spip-team/securite/issues/3698 (not public)
https://git.spip.net/spip/spip/commit/e9a03a38d5ee606b79d795f8e28c29d4eb74838e
https://git.spip.net/spip-team/securite/issues/3702 (not public)
https://git.spip.net/spip/spip/commit/d99890f66906ab52aa18f9df6109e694192bc54e
https://git.spip.net/spip-team/securite/issues/3703 (not public)
https://git.spip.net/spip/spip/commit/97845aa30aa8d845d88b86715eab53b1de5e9c6d
https://git.spip.net/spip-team/securite/issues/3728 (not public)
https://git.spip.net/spip/spip/commit/754677579b34a1705a83b8d2674baaba17472b4d
https://git.spip.net/spip/spip/commit/871777b0f56ce92c26fde3a3a53c625eb68dcff6
https://git.spip.net/spip-team/securite/issues/4494 (not public)
https://git.spip.net/spip/spip/commit/901f583021938d4b1b1632cc8ec51950a1f3e988
https://git.spip.net/spip/spip/commit/ac67fc5be53e2e085c0599144a217b440dd72fa1
https://git.spip.net/spip/spip/commit/2ce34e62ebe457d06339d5b3cb92852d1d80635c
https://git.spip.net/spip/spip/commit/8283532c94dac9f08c1fd250b433491d3fe22c84
https://git.spip.net/spip-team/securite/issues/3733 (not public)
https://git.spip.net/spip/svp/commit/bf0ff95ac535f1aa53e6a946ea739fd71106f182
https://blog.spip.net/Mise-a-jour-de-maintenance-et-securite-sortie-de-SPIP-4-1-2-SPIP-4-0-7-SPIP-3-2.html?lang=fr

Search for package or bug name: Reporting problems