Debian update for viewvc

by Carol~ Moderator - 10/24/12 9:30 AM

In Reply to: VULNERABILITIES / FIXES - October 24, 2012 by Carol~ Moderator

Release Date : 2012-10-24

Criticality level : Less critical
Impact : Cross Site Scripting
Where : From remote
Solution Status : Vendor Patch

Operating System : Debian GNU/Linux 6.0

Description:
Debian has issued an update for viewvc. This fixes a vulnerability, which can be exploited by malicious users to conduct script insertion attacks.

Solution:
Apply updated packages via the apt-get package manager.

Original Advisory:
DSA-2563-1:
http://www.debian.org/security/2012/dsa-2563

http://secunia.com/advisories/51072/