Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Sun, 19 Apr 2015 12:35:19 -0400
From: Paul Tagliamonte <paultag@...il.com>
To: oss-security@...ts.openwall.com
Cc: security@...ian.org
Subject: Remote file inclusion in django-markupfield

Hey folks,

An arbitrary file inclusion bug was discovered in django-markupfield.

A CVE was issued from Debian, CVE-2015-0846, but the commit is public in
the upstream repo, so this mail is to avoid deduplication of this issue.

Sorry about this mishandling,

Thanks,
  Paul

-- 
#define sizeof(x) rand()
</paul>
:wq

Download attachment "signature.asc" of type "application/pgp-signature" (820 bytes)

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ