Package glpi: Information
Default inline alert: Version in the repository: 10.0.15-alt1
Source package: glpi
Version: 10.0.11-alt1
Build time: Dec 15, 2023, 12:35 AM in the task #336499
Category: Networking/Other
Report package bugHome page: http://www.glpi-project.org
License: GPLv3
Summary: IT and asset management software
Description:
GLPI is the Information Resource-Manager with an additional Administration- Interface. You can use it to build up a database with an inventory for your company (computer, software, printers...). It has enhanced functions to make the daily life for the administrators easier, like a job-tracking-system with mail-notification and methods to build a database with basic information about your network-topology.
List of rpms provided by this srpm:
glpi (noarch)
glpi-apache2 (noarch)
glpi-php8.1 (noarch)
glpi-php8.2 (noarch)
glpi (noarch)
glpi-apache2 (noarch)
glpi-php8.1 (noarch)
glpi-php8.2 (noarch)
Maintainer: Pavel Zilke
Last changed
Dec. 14, 2023 Pavel Zilke 10.0.11-alt1
- New version 10.0.11 - This release fixes a security issue that has been recently discovered. Update is recommended! - Security fixes: + CVE-2023-43813 : Authenticated SQL Injection + CVE-2023-46727 : SQL injection through inventory agent request + CVE-2023-46726 : Remote code execution from LDAP server configuration form on PHP 7.4 - Deleted glpi-php8.0
Oct. 1, 2023 Pavel Zilke 10.0.10-alt1
- New version 10.0.10 - This release fixes a security issue that has been recently discovered. Update is recommended! - Security fixes: + CVE-2023-42802 : Unallowed PHP script execution + CVE-2023-41320 : Account takeover via SQL Injection in UI layout preferences + CVE-2023-41326 : Account takeover via Kanban feature + CVE-2023-41324 : Account takeover through API + CVE-2023-42462 : File deletion through document upload process + CVE-2023-41321 : Sensitive fields enumeration through API + CVE-2023-41322 : Privilege Escalation from technician to super-admin + CVE-2023-41323 : Users login enumeration by unauthenticated user + CVE-2023-41888 : Phishing through a login page malicious URL + CVE-2023-42461 : SQL injection in ITIL actors
July 13, 2023 Pavel Zilke 10.0.9-alt1
- New version 10.0.9 - This release fixes several security issues that has been recently discovered. Update is recommended! - Security fixes: + CVE-2023-37278 : SQL injection in dashboard administration - Deleted glpi-php7