[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Dolibarr-dev] Vulnerabilities
From: |
Laurent Léonard |
Subject: |
Re: [Dolibarr-dev] Vulnerabilities |
Date: |
Thu, 17 Oct 2013 17:02:33 +0200 |
User-agent: |
KMail/4.10.5 (Linux/3.10-3-amd64; KDE/4.10.5; x86_64; ; ) |
Hi Maxime,
As specified at the end of the article you pointed, those vulnerabilities are
fixed in Dolibarr 3.4.1:
10/06/2013 - Vendor notified of remotely exploitable vulnerabilities
10/07/2013 - Vendor acknowledges vulnerability, no timeline provided
10/11/2013 - Vendor states fix will be in the 3.4.1 release within the month
10/14/2013 - 3.4.1 released with patch. This advisory released
--
Laurent Léonard
Le jeudi 17 octobre 2013 16:20:33 Maxime Kohlhaas a écrit :
> Hi all,
>
> I just have been informed about this article :
> http://forelsec.blogspot.fr/2013/10/dolibarr-340-multiple-vulnerabilities.ht
> ml
>
> I'll take a look into it ASAP but I wanted to share this with you first.
>
> Regards,
>
> --
> *Maxime Kohlhaas
> Consultant associé
> **ATM Consulting*
> *+33 6 33 42 92 43*