Werk #7067: mail: escape notification context
| Komponente | Notifications | ||||
| Titel | mail: escape notification context | ||||
| Datum | 20.03.2019 | ||||
| Level | Kleine Änderung | ||||
| Klasse | Sicherheitsfix | ||||
| Kompatibilität | Kompatibel - benötigt kein manuelles Eingreifen | ||||
| Checkmk versions & editions |
|
The notification context which contains e.g. the host name and the service description is now escaped properly, i.e. '<' is replaced by '<' and so on. Only the HTML section which can be specified in the options of a notification rule is not escaped.