Date: Tue, 30 Mar 2010 15:56:03 -0400 (EDT) From: "Steven M. Christey" <coley@...us.mitre.org> To: oss-security <oss-security@...ts.openwall.com>, oss-security <oss-security@...ts.openwall.com> cc: "Steven M. Christey" <coley@...us.mitre.org> Subject: Re: CVE Request -- MediaWiki - v1.15.2 On Tue, 9 Mar 2010, Jan Lieskovsky wrote: > a, a CSS validation issue was discovered which allows editors to display > external images in wiki pages. Use CVE-2010-1189 > b, a data leakage vulnerability was discovered in thumb.php which affects > wikis which restrict access to private files using img_auth.php, or > some similar scheme. Use CVE-2010-1190 - Steve
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.