[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Proposed mass prototypejs bug filing for multiple security issues

On Sun, Oct 18, 2009 at 08:43:35PM -0400, Michael S Gilbert wrote:
> The prototypejs script has been found to be vulnerable to a couple
> security issues [0],[1].  This script is embedded in about 32 other

>         - smokeping <unfixed> (embed)

Only the lenny version (2.3.6-3) is affected. The squeeze/sid versions
depend on libjs-prototype, and the etch one doesn't use prototypejs at
all yet.

Filed as #552549, will look at a stable update. Help with extracting
the minimal patches for prototypejs 1.5.0_rc0 would be appreciated.

Thanks for your work,
Niko Tyni   ntyni@debian.org

Reply to: