Comment 3 for bug 172277

htdig (1:3.2.0b6-3.1ubuntu1) hardy; urgency=low

  * SECURITY UPDATE: Cross-site scripting via crafted sort type. (LP: #172277)
  * htsearch/Display.cc, libhtdig/ResultFetch.cc: Don't display the sort type
    if it is unrecognised.
  * References:
    CVE-2007-6110

 -- William Grant <email address hidden> Sat, 01 Dec 2007 17:53:32 +1100