IPFire 2.19 Core Update 101 Patches Cross-Site-Scripting Vulnerability in Web UI
The development team behind the IPFire software have announced the general availability of the Core Update 101 of the IPFire 2.19 Linux kernel-based firewall distribution.
IPFire 2.19 Core Update 101 is here to patch a cross-site-scripting vulnerability, as well as a remote code execution issue in the web-based user interface, which have been discovered recently by Yann Cam, an independent security researcher. These security vulnerabilities could be used by an attacker under certain circumstances.
“These attacks are only possible to perform on an admin’s computer and only in that instance when the administrator is logged in to the web user interface. Of course, we recommend to install this update as soon as possible to close these vulnerabilities,” said Michael Tremer in the release announcemen… (read more)
Remember to like our facebook and our twitter @ubuntufree for a chance to win a free Ubuntu laptop by Dell or HP!