bad1a22fea
3.8.15 Release Notes This release resolves a number of security vulnerabilities. It resolves CVE-2012-4730, CVE-2012-4732, CVE-2012-4734, CVE-2012-4735, and CVE-2012-4884. In addition to these security fixes, RT 3.8.15 contains support for partitioned PGP messages. 3.8.14 Release Notes This release contains two fixes related to the 3.8.12 security release. Access to search results URLs is now CSRF whitelisted, based on user feedback. An error in rt-email-dashboards has been corrected. 3.8.13 Release Notes This release contains an important bugfix over the 3.8.12 security release: * Fix sending email with the 'perl-script' mod_perl handler, by ensuring that STDIN was always on FD 0 before calling IPC::Open2. This failure showed as either SIGPIPE or abnormal exit codes when running sendmail. * Fix for "Undefined value assigned to typeglob" and "Bad file descriptor: core_output_filter" errors caused by the above change, by ensuring that both FD 0 and FD 1 are prevented from being claimed by Apache. This error only arose with the perfork MPM and mod_perl <= 2.0.4. |
||
---|---|---|
.. | ||
patches | ||
DESCR | ||
dirs.mk | ||
distinfo | ||
Makefile | ||
Makefile.install | ||
MESSAGE | ||
options.mk | ||
PLIST |