diff options
Diffstat (limited to 'polish/security/2004/dsa-534.wml')
| -rw-r--r-- | polish/security/2004/dsa-534.wml | 19 |
1 files changed, 19 insertions, 0 deletions
diff --git a/polish/security/2004/dsa-534.wml b/polish/security/2004/dsa-534.wml new file mode 100644 index 00000000000..050cd9a9253 --- /dev/null +++ b/polish/security/2004/dsa-534.wml @@ -0,0 +1,19 @@ +#use wml::debian::translation-check translation="1.1" maintainer="" +#pddp rafalm80 +<define-tag description>directory traversal</define-tag> +<define-tag moreinfo> +<p>A directory traversal vulnerability was discovered in mailreader +whereby remote attackers could view arbitrary files with the +privileges of the nph-mr.cgi process (by default, www-data) via +relative paths and a null byte in the configLanguage parameter.</p> + +<p>For the current stable distribution (woody), this problem has been +fixed in version 2.3.29-5woody1.</p> + +<p>For the unstable distribution (sid), this problem will be fixed soon.</p> + +<p>We recommend that you update your mailreader package.</p> +</define-tag> + +# do not modify the following line +#include "$(ENGLISHDIR)/security/2004/dsa-534.data" |