Package glpi: Information
Default inline alert: Version in the repository: 10.0.15-alt1
Source package: glpi
Version: 9.5.8-alt1
Build time: Jul 7, 2022, 12:16 PM in the task #303183
Category: Networking/Other
Report package bugHome page: http://www.glpi-project.org
License: GPLv2
Summary: IT and asset management software
Description:
GLPI is the Information Resource-Manager with an additional Administration- Interface. You can use it to build up a database with an inventory for your company (computer, software, printers...). It has enhanced functions to make the daily life for the administrators easier, like a job-tracking-system with mail-notification and methods to build a database with basic information about your network-topology.
Maintainer: Pavel Zilke
Last changed
July 4, 2022 Pavel Zilke 9.5.8-alt1
- New version 9.5.8 - This is a security release, upgrading is recommended - Security fixes: + CVE-2022-31061 : SQL injection on login page + CVE-2022-24868 : XSS / open redirect via SVG file upload + CVE-2022-24869 : Cross Site CSS Injection
Jan. 27, 2022 Pavel Zilke 9.5.7-alt1
- New version 9.5.7 - This is a security release, upgrading is recommended - Security fixes: + CVE-2022-21720 : SQL injection using custom CSS administration form + CVE-2022-21719 : Reflected XSS using reload button
Oct. 12, 2021 Pavel Zilke 9.5.6-alt1
- New version 9.5.6 - This is a security release, upgrading is recommended - Security fixes: + CVE-2021-39211 : Disclosure of GLPI and server informations in telemetry endpoint + CVE-2021-39210 : Autologin cookie accessible by scripts + CVE-2021-39209 : Bypassable CSRF protection on ajax endpoints + CVE-2021-39213 : Bypassable IP restriction on GLPI API using custom header injection