Date: Tue, 18 May 2010 15:19:35 -0400 (EDT) From: Josh Bressers <bressers@...hat.com> To: "Steven M. Christey" <coley@...us.mitre.org> Cc: oss-security@...ts.openwall.com Subject: Re: CVE request: phpbb 3.0.7 and before 3.0.5 ----- "Steven M. Christey" <coley@...us.mitre.org> wrote: [...] > > So this could use a CVE, too. At worst it's a signal to consumers that > they need to patch, even if the developer isn't clearly explaining why. > > Not much different than your typical Linux kernel bug, actually :-/ > > - Steve Here goes: http://www.phpbb.com/community/viewtopic.php?f=14&p=9764445 # [Sec] Only use forum id supplied for posting if global announcement detected. (Reported by nickvergessen) CVE-2010-1630 phpbb 3.0.5 unspecified flaw Thanks. -- JB
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ