Ubuntu
request-tracker3.6 package

Branches for Hardy

Name		Status	Last Modified	Last Commit
lp:ubuntu/hardy/request-tracker3.6		2 Mature	2009-08-14 20:56:07 UTC 2009-08-14	7. New upstream release. Author: Niko Tyni Revision Date: 2007-10-11 23:30:59 UTC New upstream release.
lp:ubuntu/hardy-proposed/request-tracker3.6		2 Mature	2011-06-08 21:13:28 UTC 2011-06-08	8. * SECURITY UPDATE: support salted pas... Author: Dominic Hargreaves Revision Date: 2011-05-29 14:38:31 UTC * SECURITY UPDATE: support salted passwords in database and upgrade unsalted passwords (CVE-2011-0009) - LP: #750339 * Security fix: only allow SuperUsers to edit global RT at a Glance * Security fix: escape custom field values before display to prevent XSS attack * Security fix for session fixation vulnerability (CVE-2009-3585, CVE-2009-4151) * Security fix: fix information leakage in scrips (CVE-2011-1008) * Multiple security fixes for: - Information disclosure via SQL injection (CVE-2011-1686) - Information disclosure via search interface (CVE-2011-1687) - Information disclosure via directory traversal (CVE-2011-1688) - User javascript execution via XSS vulnerability (CVE-2011-1689) - Authentication credentials theft (CVE-2011-1690) - XSS relating to login credentials