Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Wed, 08 Jun 2011 18:21:07 +0200
From: Jan Lieskovsky <jlieskov@...hat.com>
To: "Steven M. Christey" <coley@...us.mitre.org>
CC: oss-security <oss-security@...ts.openwall.com>
Subject: CVE Request -- Coppermine Photo Gallery -- cpg1.4.27 / cpg1.5.12
 -- XSS flaw

Hello, Josh, Steve, vendors,

   Coppermine Photo Gallery upstream in the past addressed one XSS flaw 
in cpg1.4.27 / cpg1.5.12 versions. Further details:
[1] http://bugs.gentoo.org/show_bug.cgi?id=347287
[2] 
http://forum.coppermine-gallery.net/index.php/topic,65023.msg322935.html#msg322935
[3] http://forum.coppermine-gallery.net/index.php/topic,69495.0.html
[4] http://sourceforge.net/news/?group_id=89658

There doesn't seem to be a CVE id for this issue yet (or at least I 
couldn't find one).

Note: Should be CVE-2010-XXYY CVE id.

Could you allocate one?

Thank you & Regards, Jan.
--
Jan iankko Lieskovsky / Red Hat Security Response Team

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ