Bug #51440 for RTx-EmailCompletion: Embeds a copy of prototypejs vulnerable to CVE-2008-7220

RT for rt.cpan.org

This queue is for tickets about the RTx-EmailCompletion CPAN distribution.

Report information

The Basics

Id:	51440
Status:	resolved
Priority:	0/
Queue:	RTx-EmailCompletion

People

Owner:	Nobody in particular
Requestors:	dom [...] cpan.org
Cc:
AdminCc:

Bug Information

Severity:	Important
Broken in:	0.06
Fixed in:	(no value)

History Show all quoted text

Wed Nov 11 07:29:09 2009 dom [...] cpan.org - Ticket created

Subject:

Embeds a copy of prototypejs vulnerable to CVE-2008-7220

According to http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555258 this distribution includes a vulnerable version of prototypejs, which you might like to update. Regards, Dominic.

Thu Nov 19 17:30:40 2009 cpan [...] jibsheet.com - Status changed from 'new' to 'resolved'

Thu Nov 19 17:30:44 2009 cpan [...] jibsheet.com - Correspondence added

Pushed an update to 1.6.0.3 in ff8626e755b6f58223e53edf49c00b0e36950be5 When installing against RT 3.8, this extension uses RT's own prototype.js which is already 1.6.0.3

Thu Nov 19 17:30:45 2009 The RT System itself - Status changed from 'resolved' to 'open'

Thu Nov 19 17:32:36 2009 rt.cpan [...] sartak.org - Status changed from 'open' to 'resolved'