Opened on 05/12/2014 at 09:46:24 AM

Closed on 05/12/2014 at 10:18:02 AM

Last modified on 05/12/2014 at 05:36:24 PM

#468 closed change (fixed)

Update to Trac Account Manager 0.4.4

Reported by: trev Assignee: trev
Priority: P2 Milestone:
Module: Infrastructure Keywords:
Cc: Blocked By:
Blocking: Platform:
Ready: yes Confidential: no
Tester: Verified working: no
Review URL(s):

http://codereview.adblockplus.org/6219285298937856/

Description

Background

Account Manager 0.4.4 has been released and fixed an XSS vulnerability (http://trac-hacks.org/changeset/13805). This issue doesn't seem exploitable in our instance (the email will be rejected as invalid before even trying to send a mail) but it is better to update just in case.

What to change

Update to Account Manager 0.4.4.

Attachments (0)

Change History (3)

comment:1 Changed on 05/12/2014 at 10:18:02 AM by trev

  • Resolution set to fixed
  • Status changed from new to closed

Fixed: https://hg.adblockplus.org/infrastructure/rev/205d36fff205

comment:2 Changed on 05/12/2014 at 03:29:21 PM by philll

  • Review URL(s) modified (diff)

comment:3 Changed on 05/12/2014 at 05:36:24 PM by philll

See also #469

Add Comment

Modify Ticket

Change Properties
Action
as closed .
The resolution will be deleted. Next status will be 'reopened'.
to The owner will be changed from trev.
AttachmentsDescription
 
Note: See TracTickets for help on using tickets.