Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Mon, 18 Apr 2011 16:02:01 -0400 (EDT)
From: Josh Bressers <bressers@...hat.com>
To: oss-security@...ts.openwall.com
Subject: Re: CVE id request: mahara / HTML Purifier

----- Original Message -----
> Could we get CVE id(s) for these security problems discovered in
> HTML Purifier (emedded in older versions of mahara as well).
> 
> Patches are attached.
> 
> They originate from HTML Purifier
> 
> http://htmlpurifier.org/news/2011/0327-4.3.0-released
> 

I find their advisory confusing. Can you break out which changelog entries
the patches are for?

Thanks.

-- 
    JB

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.