[SECURITY] Fedora EPEL 5 Update: rt3-3.6.9-1.el5

updates at fedoraproject.org updates at fedoraproject.org
Wed Oct 28 22:21:23 UTC 2009


--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2009-0602
2009-10-08 17:38:33
--------------------------------------------------------------------------------

Name        : rt3
Product     : Fedora EPEL 5
Version     : 3.6.9
Release     : 1.el5
URL         : http://www.bestpractical.com/rt
Summary     : Request tracker 3
Description :
RT is an enterprise-grade ticketing system which enables a group of people
to intelligently and efficiently manage tasks, issues, and requests submitted
by a community of users.

--------------------------------------------------------------------------------
Update Information:

All versions of RT from 3.4.6 to 3.8.4 are vulnerable to an escaping bug in the
display of Custom Fields that could allow injection of javascript into the RT
UI. rt 3.6.9 fixes this issue.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #526872 - Update to rt 3.6.9
        https://bugzilla.redhat.com/show_bug.cgi?id=526872
--------------------------------------------------------------------------------

This update can be installed with the "yum" update programs.  Use
su -c 'yum update rt3' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora EPEL GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


More information about the epel-package-announce mailing list