CVE-2024-39914的安全版本 #599
Comments
|
I'm sorry I can only answer in English. |
|
Thanks, I will ask questions in English in the future |
|
Is this still needing an answer or, is it safe to close this Issue out? |
|
@Neustradamus What do yo umean "Any news about security problems"? The posts you presented are indeed news about the security problems and what people can and should do to fix those problems. So while 1.5.11 (or 1.6.x) could be published, it's a time process, Not somethign we can do just on a whim. Should it be done? Yes. |
|
@mastacontrola: 1.5.10 is unsecure, there are several vulnerabilities in 1.5.10 which are not fixed in a stable release (there is not a 1.5.11), it is important to create the 1.5.11 quickly. The CVE process in long, the author informes, the team has a delay to fix it, the CVE is published. |
See #600 (comment) #600 |
|
Dear @FOGProject team, @darksidemilk: No the latest official build is 1.5.10 (Recall: badly which has been retagged too in the past, look here: #565). Go here, to see what is the latest release:
Please reopen this security ticket, FOG 1.5.10 is not secure, there is no 1.5.11 release with all vulnerability fixes. Thanks in advance. |
|
We will not be reopening this issue. The user that opened it closed it themselves as they saw in the NIST listing the instructions for patching. |
|
Yes, there is a problem, a 1.5.11 is needed to fix the unsecure 1.5.10 build. I have sent you all links previously about the current latest stable release. The latest stable is 1.5.10.
Currently people always install a version with vulnerabilities. 1.6.x is another branch (developement), it is not the stable branch. People want a new stable release with fixes. After the 1.5.9, there was a 1.5.10. After a unsecure 1.5.10, a 1.5.11 is needed. More information here: |
你好 我想知道该漏洞的最新修复版本是哪一个,项目中最新版本为2023年
The text was updated successfully, but these errors were encountered: