[23631] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: [RHSA-2001:162-04] Updated namazu packages are available

daemon@ATHENA.MIT.EDU (NOKUBI Takatsugu)
Thu Dec 27 12:31:22 2001

Message-Id: <200112270647.PAA12194@ns1.eal.or.jp>
To: bugtraq@securityfocus.com
In-Reply-To: Your message of "Mon, 24 Dec 2001 22:05 -0500".
	<200112250305.fBP35Wr26855@porkchop.redhat.com>
From: knok@daionet.gr.jp (NOKUBI Takatsugu)
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Date: Thu, 27 Dec 2001 15:45:57 JST

In article <200112250305.fBP35Wr26855@porkchop.redhat.com>
bugzilla@redhat.com writes:

>> 3. Problem description:
>> 
>> namazu may inadvertently include malicious HTML tags or script in a
>> dynamically generated page based on unvalidated input from untrustworthy
>> sources.

The issue is still exist on Namazu 2.0.9... Namazu Project was
released 2.0.10, I recomment to use it.
-- 
NOKUBI Takatsugu
E-mail: knok@daionet.gr.jp
	knok@namazu.org / knok@debian.org


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[23631] in bugtraq

Re: [RHSA-2001:162-04] Updated namazu packages are available

daemon@ATHENA.MIT.EDU (NOKUBI Takatsugu)Thu Dec 27 12:31:22 2001

daemon@ATHENA.MIT.EDU (NOKUBI Takatsugu)
Thu Dec 27 12:31:22 2001