UbuntuUpdates.org

Package "collabtive"

Name: collabtive

Description:

Web-based project management software

Latest version: 2.0+dfsg-6ubuntu1.1
Release: xenial (16.04)
Level: security
Repository: universe
Homepage: http://collabtive.o-dyn.de/

Links


Download "collabtive"


Other versions of "collabtive" in Xenial

Repository Area Version
base universe 2.0+dfsg-6ubuntu1
updates universe 2.0+dfsg-6ubuntu1.1

Changelog

Version: 2.0+dfsg-6ubuntu1.1 2020-10-19 18:06:20 UTC

  collabtive (2.0+dfsg-6ubuntu1.1) xenial-security; urgency=medium

  * SECURITY UPDATE: server-side arbitrary code execution
    - debian/patches/CVE-2015-0258.patch: Fix avatar upload filename blacklist
      functionality in manageuser.php.
    - CVE-2015-0258

 -- Avital Ostromich <email address hidden> Fri, 09 Oct 2020 09:56:14 -0400

CVE-2015-0258 Multiple incomplete blacklist vulnerabilities in the avatar upload functionality in manageuser.php in Collabtive before 2.1 allow remote authenticate



About   -   Send Feedback to @ubuntu_updates