UbuntuUpdates.org

Package "spip"

Name: spip

Description:

website engine for publishing

Latest version: 3.1.4-4~deb9u5build0.18.04.1
Release: bionic (18.04)
Level: updates
Repository: universe
Homepage: http://www.spip.net/

Links


Download "spip"


Other versions of "spip" in Bionic

Repository Area Version
base universe 3.1.4-3
security universe 3.1.4-4~deb9u5build0.18.04.1

Changelog

Version: 3.1.4-4~deb9u5build0.18.04.1 2022-06-16 17:06:24 UTC

  spip (3.1.4-4~deb9u5build0.18.04.1) bionic-security; urgency=medium

  * fake sync from Debian to fix CVE-2020-28984, CVE-2022-26846 and
    CVE-2022-26847 (LP: #1971185).

Source diff to previous version
1971185 Multiple vulnerabilities in Bionic and Impish
CVE-2020-28984 prive/formulaires/configurer_preferences.php in SPIP before 3.2.8 does not properly validate the couleur, display, display_navigation, display_outils
CVE-2022-26846 SPIP before 3.2.14 and 4.x before 4.0.5 allows remote authenticated editors to execute arbitrary code.
CVE-2022-26847 SPIP before 3.2.14 and 4.x before 4.0.5 allows unauthenticated access to information about editorial objects.

Version: 3.1.4-4~deb9u3build0.18.04.1 2020-09-22 00:06:17 UTC

  spip (3.1.4-4~deb9u3build0.18.04.1) bionic-security; urgency=medium

  * fake sync from Debian

 -- Mike Salvatore <email address hidden> Mon, 21 Sep 2020 13:54:11 -0400




About   -   Send Feedback to @ubuntu_updates