FreeBSD : kronolith -- XSS vulnerabilities in several of the calendar name and event data fields (36494478-6a88-11da-b96e-000fb586ba73)
High Nessus Plugin ID 21411
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionAnnounce of Kronolith H3 (2.0.6) (final) :
This [2.0.6] is a security release that fixes cross site scripting vulnerabilities in several of the calendar name and event data fields.
None of the vulnerabilities can be exploited by unauthenticated users;
however, we strongly recommend that all users of Kronolith 2.0.5 upgrade to 2.0.6 as soon as possible.
SolutionUpdate the affected package.