Re: [RHSA-2001:162-04] Updated namazu packages are available

From: NOKUBI Takatsugu (knok@daionet.gr.jp)
Date: 12/27/01

• Previous message: Marc Maiffret: "RE: Too much misleading advice on the Universal Plug-and-Play security hole"
• In reply to: bugzilla@redhat.com: "[RHSA-2001:162-04] Updated namazu packages are available"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

To: bugtraq@securityfocus.com
From: knok@daionet.gr.jp (NOKUBI Takatsugu)
Date: Thu, 27 Dec 2001 15:45:57 JST

In article <200112250305.fBP35Wr26855@porkchop.redhat.com>
bugzilla@redhat.com writes:

>> 3. Problem description:
>>
>> namazu may inadvertently include malicious HTML tags or script in a
>> dynamically generated page based on unvalidated input from untrustworthy
>> sources.

The issue is still exist on Namazu 2.0.9... Namazu Project was
released 2.0.10, I recomment to use it.

-- 
NOKUBI Takatsugu
E-mail: knok@daionet.gr.jp
	knok@namazu.org / knok@debian.org

---

• Previous message: Marc Maiffret: "RE: Too much misleading advice on the Universal Plug-and-Play security hole"
• In reply to: bugzilla@redhat.com: "[RHSA-2001:162-04] Updated namazu packages are available"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > bugtraq  > 2001-12