3 matches found
Security fix for the ALT Linux 9 package glpi version 9.5.6-alt1
9.5.6-alt1 built Oct. 18, 2021 Pavel Zilke in task 287044 Oct. 12, 2021 Pavel Zilke - New version 9.5.6 - This is a security release, upgrading is recommended - Security fixes: + CVE-2021-39211 : Disclosure of GLPI and server informations in telemetry endpoint + CVE-2021-39210 : Autologin cookie...
Security fix for the ALT Linux 10 package glpi version 9.5.6-alt1
9.5.6-alt1 built Oct. 14, 2021 Pavel Zilke in task 287043 Oct. 12, 2021 Pavel Zilke - New version 9.5.6 - This is a security release, upgrading is recommended - Security fixes: + CVE-2021-39211 : Disclosure of GLPI and server informations in telemetry endpoint + CVE-2021-39210 : Autologin cookie...
CVE-2021-39209
CVE-2021-39209 affects GLPI: CSRF protection bypass in versions prior to 9.5.6, enabling a logged-in user to perform many actions. The original entry notes the fix in 9.5.6, with no workarounds other than upgrading. Connected advisories extend the remediation, listing patched releases such as GLP...