Oct. 26, 2020 Pavel Zilke 9.5.2-alt1
- New version 9.5.2
- Security fixes:
+ CVE-2020-15176 : SQL injection with a query parameter of user form
+ CVE-2020-15175 : Removal of .htaccess file in the files folder via a plugin endpoint
+ CVE-2020-15217 : Leakage issue with knowledge base
+ CVE-2020-15177 : Stored XSS in install script
+ CVE-2020-15226 : Minor SQL Injection in Search API
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ALT Linux | 10 | src | glpi-9.5.12-alt1.src.rpm | < 9.5.2-alt1 | glpi-9.5.12-alt1.src.rpm |
ALT Linux | 10 | noarch | glpi-9.5.12-alt1.noarch.rpm | < 9.5.2-alt1 | glpi-9.5.12-alt1.noarch.rpm |
ALT Linux | 10 | noarch | glpi-apache2-9.5.12-alt1.noarch.rpm | < 9.5.2-alt1 | glpi-apache2-9.5.12-alt1.noarch.rpm |
ALT Linux | 10 | noarch | glpi-php7-9.5.12-alt1.noarch.rpm | < 9.5.2-alt1 | glpi-php7-9.5.12-alt1.noarch.rpm |