Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Wed, 18 Apr 2012 18:28:16 -0600
From: Kurt Seifried <kseifried@...hat.com>
To: oss-security@...ts.openwall.com
CC: Greg Knaddison <greg.knaddison@...uia.com>
Subject: Re: CVE Request for Drupal Contributed Advisories
 on 2012-04-18

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 04/18/2012 04:50 PM, Greg Knaddison wrote:
> Hello,
> 
> Two releases today need CVEs:
> 
> https://drupal.org/node/1538436 SA-CONTRIB-2012-060 - Commerce
> Reorder - Cross Site Request Forgery

Please use CVE-2012-2116 for this issue

> https://drupal.org/node/1538704 SA-CONTRIB-2012-061 - Gigya -
> Social optimization - Cross Site Scripting (XSS)

Please use CVE-2012-2117 for this issue

> Thanks, Greg
> 
> -- Director Security Services | +1-720-310-5623 Skype:
> greg.knaddison | http://twitter.com/greggles | http://acquia.com


- -- 
Kurt Seifried Red Hat Security Response Team (SRT)
PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=05wj
-----END PGP SIGNATURE-----

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ