blob: 1ca1571e294aba752561b375a4f66a6133d20505 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
|
<define-tag description>LTS security update</define-tag>
<define-tag moreinfo>
<p>HTML::Scrubber is vulnerable to a cross-site scripting (XSS) vulnerability
when the comment feature is enabled. It allows remote attackers to inject
arbitrary web script or HTML via a crafted comment.</p>
<p>For Debian 6 squeeze, this has been fixed in libhtml-scrubber-perl version
0.08-4+deb6u1.</p>
</define-tag>
# do not modify the following line
#include "$(ENGLISHDIR)/lts/security/2015/dla-339.data"
# $Id$
|
