Пакет glpi-php8.1: Информация
Default inline alert: Версия в репозитории: 10.0.15-alt1
Бинарный пакет: glpi-php8.1
Версия: 10.0.10-alt1
Архитектура: noarch
Собран: 27 ноября 2023 г. 8:56
Исходный пакет: glpi
Категория: Сети/Прочее
Сообщить об ошибке в пакетеДомашняя страница: http://www.glpi-project.org
Лицензия: GPLv3
О пакете: PHP8.1 dependencies for glpi
Описание:
php8.1 dependencies for glpi
Сопровождающий: Pavel Zilke
Последнее изменение
1 октября 2023 г. Pavel Zilke 10.0.10-alt1
- New version 10.0.10 - This release fixes a security issue that has been recently discovered. Update is recommended! - Security fixes: + CVE-2023-42802 : Unallowed PHP script execution + CVE-2023-41320 : Account takeover via SQL Injection in UI layout preferences + CVE-2023-41326 : Account takeover via Kanban feature + CVE-2023-41324 : Account takeover through API + CVE-2023-42462 : File deletion through document upload process + CVE-2023-41321 : Sensitive fields enumeration through API + CVE-2023-41322 : Privilege Escalation from technician to super-admin + CVE-2023-41323 : Users login enumeration by unauthenticated user + CVE-2023-41888 : Phishing through a login page malicious URL + CVE-2023-42461 : SQL injection in ITIL actors
13 июля 2023 г. Pavel Zilke 10.0.9-alt1
- New version 10.0.9 - This release fixes several security issues that has been recently discovered. Update is recommended! - Security fixes: + CVE-2023-37278 : SQL injection in dashboard administration - Deleted glpi-php7
13 июля 2023 г. Pavel Zilke 10.0.8-alt1
- New version 10.0.8 - This release fixes several security issues that has been recently discovered. Update is recommended! - Security fixes: + CVE-2023-35924 : SQL injection via inventory agent request + CVE-2023-36808 : SQL injection through Computer Virtual Machine information + CVE-2023-35939 : Unauthorized access to Dashboard data + CVE-2023-35940 : Unauthenticated access to Dashboard data + CVE-2023-34244 : Reflected XSS in search pages + CVE-2023-34107 : Unauthorized access to knowledge base items + CVE-2023-34106 : Unauthorized access to user data