Re: POST FBR : Bodhi XSS vulnerability
Great job addressing this Clément
On Mon, Mar 2, 2020 at 5:26 PM Clement Verna <cverna(a)fedoraproject.org>
wrote:
Hi all,
An XSS vulnerability was reported against Bodhi, I have patched the
staging and production instances [0][1] until I get the fix upstream and
deploy a new release.
[0] -
https://infrastructure.fedoraproject.org/cgit/ansible.git/commit/?id=9b13...
[1] -
https://infrastructure.fedoraproject.org/cgit/ansible.git/commit/?id=1a90...
Thanks
_______________________________________________
infrastructure mailing list -- infrastructure(a)lists.fedoraproject.org
To unsubscribe send an email to
infrastructure-leave(a)lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/infrastructure@lists.fedora...
--
Leigh Griffin
Engineering Manager
Red Hat Waterford <https://www.redhat.com/>
Communications House
Cork Road, Waterford City
lgriffin(a)redhat.com
M: +353877545162 IM: lgriffin
@redhatjobs <https://twitter.com/redhatjobs> redhatjobs
<https://www.facebook.com/redhatjobs> @redhatjobs
<https://instagram.com/redhatjobs>
<https://red.ht/sig>
Attachments:
- attachment.html (text/html — 5.3 KB)