oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

CVE request: MoinMoin information disclosure

From: Raphael Geissert <geissert () debian org>
Date: Thu, 21 Jan 2010 11:49:05 -0600
Hi,

There's not much information about this issue, but there appears to be an 
information disclosure vulnerability in MoinMoin related to the handling of 
sys.argv.

References:
http://secunia.com/advisories/38242/
http://moinmo.in/SecurityFixes
http://hg.moinmo.in/moin/1.9/rev/9d8e7ce3c3a2
http://hg.moinmo.in/moin/1.9/rev/04afdde50094
http://moinmo.in/MoinMoinChat/Logs/moin-dev/2010-01-18 (line 70 and below)

Could a CVE please be assigned? Thanks.

Regards,
-- 
Raphael Geissert - Debian Developer
www.debian.org - get.debian.net
Previous By Date Next
Previous By Thread Next

Current thread: