CVE-2017-8802 Zimbra Collaboration Suite - Stored Cross-Site Scripting

Ask questions about your setup or get help installing ZCS server (ZD section below).
Klug
Elite member
Elite member
Posts: 2251
Joined: Mon Dec 16, 2013 11:35 am
Contact:

Re: CVE-2017-8802 Zimbra Collaboration Suite - Stored Cross-Site Scripting

Postby Klug » Mon Feb 12, 2018 8:33 am

Hello David (nice first name, you can trust me on that) and welcome on the forum.

Thank you for the clarifications and fixes about the patch and release notes.

I still cannot access, with my bugzilla account, bugs #108265 or #107925 (the two I've tried).


User avatar
David Bingham
Zimbra Employee
Zimbra Employee
Posts: 3
Joined: Sat Feb 10, 2018 2:04 am
Location: Ottawa, Ontario, Canada

Re: CVE-2017-8802 Zimbra Collaboration Suite - Stored Cross-Site Scripting

Postby David Bingham » Tue Feb 13, 2018 1:13 pm

Klug wrote:
I still cannot access, with my bugzilla account, bugs #108265 or #107925 (the two I've tried).


In many cases where the bug report includes details of an exploit, as for those two, publication before people have had a chance to patch or upgrade isn't responsible. Now that we have the fixes for those two available in all supported versions, we will be able to open them up, after a sufficient delay (30 days) for folks to patch or upgrade.

Cheers,
David. (yeah, it's a cool name!)

Return to “Installation and Upgrade”

Who is online

Users browsing this forum: No registered users and 13 guests