ALT Linux Team

Branch p8 update on 2017-10-05

2017-10-05

ALT-BU-2017-3395-1

Branch p8 update bulletin.

ALT-PU-2017-2369-1

Package qbittorrent updated to version 3.3.16-alt0.M80P.1 for branch p8 in task 190104.

Closed vulnerabilities

Published: 2017-03-06
Modified: 2024-11-21

CVE-2017-6503

WebUI in qBittorrent before 3.3.11 did not escape many values, which could potentially lead to XSS.

Severity: MEDIUM (6.1) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
References:
Published: 2017-03-06
Modified: 2024-11-21

CVE-2017-6504

WebUI in qBittorrent before 3.3.11 did not set the X-Frame-Options header, which could potentially lead to clickjacking.

Severity: MEDIUM (6.1) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
References:
VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.0
Back to top