[SECURITY] [DLA 485-1] extplorer security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 485-1] extplorer security update
From: Thorsten Alteholz <debian@alteholz.de>
Date: Sun, 22 May 2016 22:30:06 +0200 (CEST)
Message-id: <[🔎] alpine.DEB.2.02.1605222228100.3673@jupiter.server.alteholz.net>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : extplorer
Version        : 2.1.0b6+dfsg.3-4+deb7u3
CVE ID         : CVE-2015-5660

This security update fixes a security issue in extplorer. We recommend youupgrade your extplorer package.


   * CVE-2015-5660
     Cross-site request forgery (CSRF) vulnerability allows remote
     attackers to hijack the authentication of arbitrary users for
     requests that execute PHP code.

Further information about Debian LTS security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=8wgM
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 484-1] graphicsmagick security update
Next by Date: [SECURITY] [DLA 486-1] imagemagick security update
Previous by thread: [SECURITY] [DLA 484-1] graphicsmagick security update
Next by thread: [SECURITY] [DLA 486-1] imagemagick security update
Index(es):
- Date
- Thread