Univention Bugzilla – Bug 43055
unsecure remote resource loading in css
Last modified: 2019-04-04 12:55:07 CEST
I think this should be "backported" to earlier versions... +++ This bug was initially created as a clone of Bug #43054 +++ In file /usr/share/univention-management-console-frontend/js/dijit/themes/umc/umc.css line 10692 there is a css backround attribute which loads an image from demo.univention.de which is used for statistics. Unfortunately this image is loaded via http instead https so it will break the secure context of the website. Attached there is a Patchfile to correct that behavior in a productive environment.
UCS 4.0 is out of maintenance. This bug has no security impact.