Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [day] [month] [year] [list]
Date: Tue, 11 Sep 2012 17:24:10 -0500
From: Raphael Geissert <>
Subject: CVE-2012-2238: trytond missing permissions check in button model


FYI, there's an issue affecting trytond 2.4's button model, allowing an 
unauthorised user to execute otherwise-restricted code.

References: (still hidden as of this time)

Raphael Geissert - Debian Developer -

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.