FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

kronolith -- Cross site scripting vulnerabilities in several of the calendar name and event data fields

Affected packages
kronolith < 2.0.6

Details

VuXML ID 36494478-6a88-11da-b96e-000fb586ba73
Discovery 2005-12-11
Entry 2005-12-11

Announce of Kronolith H3 (2.0.6) (final):

This [2.0.6] is a security release that fixes cross site scripting vulnerabilities in several of the calendar name and event data fields. None of the vulnerabilities can be exploited by unauthenticated users; however, we strongly recommend that all users of Kronolith 2.0.5 upgrade to 2.0.6 as soon as possible.

[source]

References

URL http://marc.theaimsgroup.com/?l=kronolith&m=113433029822279&w=2

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.