Date: Sat, 13 Sep 2014 14:15:27 +0200 From: Damien Regad <dregad@...tisbt.org> To: oss-security@...ts.openwall.com Subject: Re: CVE request: MantisBT Null byte poisoning in LDAP authentication On 2014-09-12 20:36, cve-assign@...re.org wrote: > Use CVE-2014-6387. Thank you. Will post back here when MantisBT 1.2.18 is released. Until then, affected systems can apply the patch manually.
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ