Package glpi: Information

  • Default inline alert: Version in the repository: 10.0.14-alt1

Source package: glpi
Version: 10.0.3-alt1
Latest version according to Repology
Build time:  Sep 15, 2022, 04:08 AM in the task #306812
Category: Networking/Other
Report package bug
Gear: https://git.altlinux.org/gears/g/glpi.git?a=tree;hb=5b1686d21fd4…
Home page: http://www.glpi-project.org
License: GPLv3
Summary: IT and asset management software
Description: 
GLPI is the Information Resource-Manager with an additional Administration-
Interface.
You can use it to build up a database with an inventory for your company
(computer, software, printers...).
It has enhanced functions to make the daily life for the administrators easier,
like a job-tracking-system with mail-notification and methods to build a
database with basic information about your network-topology.
List of rpms provided by this srpm:
glpi (noarch)
glpi-apache2 (noarch)
glpi-php7 (noarch)
glpi-php8.0 (noarch)
glpi-php8.1 (noarch)
Maintainer: Pavel Zilke
List of contributors:
Pavel Zilke
ACL:
Pavel Zilke
    1. rpm-macros-webserver-common

Last changed

Sept. 14, 2022 Pavel Zilke 10.0.3-alt1
- New version 10.0.3
- This release fixes several critical security issues that has been recently discovered. Update is strongly recommended!
- Security fixes:
 + CVE-2022-35945 : XSS through registration API
 + CVE-2022-31143 : Leak of sensitive information through login page error
 + CVE-2022-31187 : Stored XSS through global search (CVE-2022-31187)
 + CVE-2022-35914 : [critical] Command injection using a third-party library script
 + CVE-2022-35946 : SQL injection through plugin controller
 + CVE-2022-35947 : [critical] Authentication via SQL injection
 + CVE-2022-36112 : Blind Server-Side Request Forgery (SSRF) in RSS feeds and planning
July 22, 2022 Pavel Zilke 10.0.2-alt1
- New version 10.0.2
- This is a security release, upgrading is recommended
- Security fixes:
 + CVE-2022-31061 : Unauthenticated SQL injection on login page
 + CVE-2022-31056 : SQL injection on actor part in assistance forms
 + CVE-2022-31068 : Unauthenticated Sensitive Data Exposure on Refused Inventory Files
June 10, 2022 Pavel Zilke 10.0.1-alt1
- New version 10.0.1
- This is a security release, upgrading is recommended
- The GLPI licence has been moved to GPLv3+
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.4.2
Back to top