Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Tue, 12 May 2015 10:55:59 +0200
From: Alessandro Ghedini <>
Subject: CVE Request: phpbb open redirect


from the phpbb 3.0.14 release highlight:

> Security: An insufficient check allowed users of the Google Chrome browser to
> be redirected to external domains (e.g. on login). Thanks to Mathias Karlsson
> (avlidienbrunn) for bringing this to our attention.

The patch seems to be this one:

Honestly, there doesn't seem to be much information publicly available, but can
a CVE be assigned for this please?


Download attachment "signature.asc" of type "application/pgp-signature" (820 bytes)

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ