[Openplm_announce] Security release: OpenPLM 1.1.1
Pierre Cosquer
pcosquer at linobject.com
Mon Oct 1 14:44:21 CEST 2012
Hi,
An XSS issue has been discovered in OpenPLM.
All users are encouraged to upgrade OpenPLM immediately.
If you have installed the development version:
$ cd /path/to/openPLM/templates/blocks/
$ svn up
$ service apache2 restart
If you have install OpenPLM using the tarball:
* Download the latest tarball of OpenPLM:
http://wiki.openplm.org/trac/downloads
* Extract the file openPLM/templates/blocks/reference.html to
openPLM/templates/blocks/
* Restart apache
The fix is described here: http://wiki.openplm.org/trac/changeset/1649
If you find a security issue, please contact me in private (pcosquer
[AT] linobject.com).
Sorry for the inconvenience,
Pierre Cosquer
More information about the Openplm_announce
mailing list