Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Tue, 18 May 2010 15:17:19 -0400 (EDT)
From: Josh Bressers <bressers@...hat.com>
To: oss-security@...ts.openwall.com
Cc: coley <coley@...re.org>
Subject: Re: CVE request: phorum < 5.2.15 backend XSS

----- "Steven M. Christey" <coley@...us.mitre.org> wrote:
> On Tue, 18 May 2010, Josh Bressers wrote:
> >
> > Does someone have some additional details for this? I don't see enough
> > information for me to assign a CVE id.
> 
> Welcome to daily life in CVE.
> 
> In this case we have an announcement from the vendor alluding to at least
> one security problem, and a fix for it.  This is (unfortunately)
> sufficient for us to assign a CVE to it.
> 

Good enough for me:
CVE-2010-1629 phorum < 5.2.15 backend XSS

Thanks

-- 
    JB

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ