Date: Tue, 4 Aug 2009 19:16:18 +0200 From: Alex Legler <a3li@...too.org> To: oss-security@...ts.openwall.com Subject: CVE request: Wordpress Hey, yet another Wordpress release: http://wordpress.org/development/2009/08/wordpress-2-8-3-security-release/ Given the upstream statement and the changesets (see below), it looks like an incomplete fix for CVE-2009-2334. Changes: http://core.trac.wordpress.org/changeset/11769 http://core.trac.wordpress.org/changeset/11769 http://core.trac.wordpress.org/changeset/11766 http://core.trac.wordpress.org/changeset/11765 Please assign a CVE. Thanks, Alex Download attachment "signature.asc" of type "application/pgp-signature" (199 bytes)
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.