perfsonar-user - [perfsonar-user] MaDDash 2.0.1 security update
Subject: perfSONAR User Q&A and Other Discussion
List archive
- From: Andrew Lake <>
- To: "" <>
- Cc:
- Subject: [perfsonar-user] MaDDash 2.0.1 security update
- Date: Thu, 13 Jul 2017 09:03:03 -0400
- Ironport-phdr: 9a23:zxowaxA4oMGq/dYoFxVzUyQJP3N1i/DPJgcQr6AfoPdwSP3yp8bcNUDSrc9gkEXOFd2Crakb26yL6+jJYi8p39WoiDg6aptCVhsI2409vjcLJ4q7M3D9N+PgdCcgHc5PBxdP9nC/NlVJSo6lPwWB6i760TlHUA3yLwRuIeL8AMvPlMmt/+G055DJZQhU3nywba44ZEGuoB/frc4QiJEnN7080DPIpGdFYeJb2TkuKF6OyUXS/MC1qbdl/z5dpLoF/s1NGfHzeagpZbFDSjIrLzZmt4XQqRDfQF7XtTMnWWIMn08QDg==
All, A new version of the MaDDash packages are now in our yum and Debian repositories. They only changes are to the web interface to prevent a _javascript_ injection vulnerability that was brought to our attention. The vulnerability could allow someone to generate a URL that creates a defaced page or similar. We recommend anyone running MaDDash update as soon as possible. It affects all versions of MaDDash. The fixed packages are named maddash, maddash-server and madash-webui version 2.0.1. If you are running auto-updates you should get the change automatically. If you need to manually update you can run the following: CentOS/RedHat: yum update maddash maddash-server maddash-webui Debian/Ubuntu: apt-get update apt-get upgrade maddash maddash-server maddash-webui Please let us know if you have any questions. Thank you, Andy Lake |
- [perfsonar-user] MaDDash 2.0.1 security update, Andrew Lake, 07/13/2017
Archive powered by MHonArc 2.6.19.