Re: Proposed mass prototypejs bug filing for multiple security issues
On Sun, Oct 18, 2009 at 08:43:35PM -0400, Michael S Gilbert wrote:
> The prototypejs script has been found to be vulnerable to a couple
> security issues [0],[1]. This script is embedded in about 32 other
> - smokeping <unfixed> (embed)
Only the lenny version (2.3.6-3) is affected. The squeeze/sid versions
depend on libjs-prototype, and the etch one doesn't use prototypejs at
all yet.
Filed as #552549, will look at a stable update. Help with extracting
the minimal patches for prototypejs 1.5.0_rc0 would be appreciated.
Thanks for your work,
--
Niko Tyni ntyni@debian.org
Reply to: