Comment 56 for bug 1496277
Revision history for this message
| Tristan Cacqueray (tristan-cacqueray) wrote Re: template-validate may read server local files (CVE-2015-5295) | #56 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
35a32c5
(Get the code!)
Thanks Zane, I confirm this patch fix the issue (at least for rdo-kilo).
Also, tox passed on all three patchs.
@heat-coresec, please review proposed patch (comment #53, #54 and #55).
If patch are +2 here, I propose a disclosure date next week:
2016-01-19, 1500UTC
Would that works for you folks?