Date: Mon, 1 Dec 2008 13:29:45 +0100 From: Hanno Böck <hanno@...eck.de> To: oss-security@...ts.openwall.com, "Steven M. Christey" <coley@...us.mitre.org> Subject: CVE request: tikiwiki < 2.2 http://info.tikiwiki.org/tiki-read_article.php?articleId=41 " Updating to version 2.2 is highly recommended. In addition to several minor fixes and enhancements, the update provides two undisclosed security fixes. Special thanks to Emanuele Gentili for reporting one of the security issues. " Further information is not easy to get, the changelog lists a vast number of [sec]-marked fixes, though it's not easy to see if they are "just" improvements to prevent potential issues or real security issues. -- Hanno Böck Blog: http://www.hboeck.de/ GPG: 3DBD3B20 Jabber/Mail: hanno@...eck.de http://waldbesetzung.blogsport.de/ Waldbesetzung gegen Flughafenausbau Frankfurt, 28. - 30.11. http://www.jukss.de/ Jugemdumweltkongress, 27.12.-4.1. Download attachment "signature.asc " of type "application/pgp-signature" (198 bytes)
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.