Re: [RFR2] wml://lts/security/2021/dla-2618.wml

To: debian-l10n-french@lists.debian.org
Subject: Re: [RFR2] wml://lts/security/2021/dla-2618.wml
From: Jean-Pierre Giraud <jenapierregiraud75@free.fr>
Date: Fri, 9 Apr 2021 08:47:02 +0200
Message-id: <[🔎] dd7c5d0d-da56-64a4-5dca-4d0d4b0730dd@free.fr>
In-reply-to: <[🔎] 20210409081309.3e87dacc@debian>
References: <[🔎] 20210408141524.545446ed@debian> <[🔎] 20210408204511.47cc2d10@endor.maison> <[🔎] 20210409081309.3e87dacc@debian>

Bonjour,

Le 09/04/2021 à 08:13, JP Guillonneau a écrit :
> Bonjour,
> 
> le jeudi 08 avril 20:45, Baptiste Jammet a écrit :
> 
>> après un {function name= substring.</p></li>
>> Il manque une accolade fermante ? (dans la VO aussi).
>>
> C’est une copie du texte du CVE :
> https://security-tracker.debian.org/tracker/CVE-2021-26120
> 
> s/substring/sous-chaîne/ ?
> 
> Autre appel à commentaire.
> 
>  
> Amicalement.
> 
> --
> Jean-Paul
> 
En jetant un œil sur le changelog de l'amont on lit :
https://github.com/smarty-php/smarty/commit/4f634c0097ab4a8b2adc2a97caacd1676e88f9c8
- Code injection vulnerability by using illegal function names in
`{function name='blah'}{/function}
La traduction de sous-chaîne me semble légitime.
Amicalement,
jipege

Reply to:

Follow-Ups:
- [LCFC] wml://lts/security/2021/dla-2618.wml
  - From: JP Guillonneau <guillonneau.jeanpaul@free.fr>

References:
- [RFR] wml://lts/security/2021/dla-2618.wml
  - From: JP Guillonneau <guillonneau.jeanpaul@free.fr>
- Re: [RFR] wml://lts/security/2021/dla-2618.wml
  - From: Baptiste Jammet <baptiste@mailoo.org>
- [RFR2] wml://lts/security/2021/dla-2618.wml
  - From: JP Guillonneau <guillonneau.jeanpaul@free.fr>

Prev by Date: [RFR2] wml://lts/security/2021/dla-2618.wml
Next by Date: Re: [RFR] wml://lts/security/2021/dla-2619.wml
Previous by thread: [RFR2] wml://lts/security/2021/dla-2618.wml
Next by thread: [LCFC] wml://lts/security/2021/dla-2618.wml
Index(es):
- Date
- Thread