github bestpractical/rt rt-3.6.10
on GitHub

latest releases: rt-5.0.6, rt-5.0.5, rt-4.4.7...
9 years ago

This is a security release of RT.
It includes a fix for the session fixation vulnerability detailed in the following announcements:
http://blog.bestpractical.com/2009/11/session-fixation-vulnerability.html
http://lists.bestpractical.com/pipermail/rt-announce/2009-November/000176.html

You can download it here:

http://download.bestpractical.com/pub/rt/release/rt-3.6.10.tar.gz
http://download.bestpractical.com/pub/rt/release/rt-3.6.10.tar.gz.sig

SHA1 sums 

145124d3ce7dcae76a935f9ce373825ca5fb6e7d  rt-3.6.10.tar.gz
4322f23057c14296ece60dc9f8e242ba5ea2a155  rt-3.6.10.tar.gz.sig

A complete list of changes since 3.6.9 is included below.

-kevin

commit 81f0759
Author: Alex Vandiver alexmv@bestpractical.com
Date: Wed Sep 30 17:07:24 2009 -0400 

Remove references to .svn

commit e28bfab
Author: Alex Vandiver alexmv@bestpractical.com
Date: Wed Sep 30 17:08:29 2009 -0400 

Remove old and incorrect releng.cnf

commit e82d5f9
Author: Alex Vandiver alexmv@bestpractical.com
Date: Tue Oct 6 14:18:44 2009 -0400 

Use spaces instead of tabs in commands, otherwise copy-and-paste in the terminal can fail

commit b157bae
Author: Alex Vandiver alexmv@bestpractical.com
Date: Tue Oct 6 14:27:26 2009 -0400 

Add .gitignore from 3.8-trunk

commit a8f7dcc
Author: Kevin Falcone falcone@bestpractical.com
Date: Mon Nov 30 13:45:26 2009 -0500 

Apply patch for session fixation vulnerability (CVE-2009-3585)
Check out latest releases or
releases around bestpractical/rt rt-3.6.10

Don't miss a new rt release

NewReleases is sending notifications on new releases.

Get notifications