oss-sec mailing list archives
Re: CVE requests: Typo3
From: Josh Bressers <bressers () redhat com>
Date: Fri, 30 Sep 2011 10:58:42 -0400 (EDT)
----- Original Message -----
Hi, please assign CVE IDs for two new Typo3 issues: 1. TYPO3-CORE-SA-2011-002: Potential SQL injection vulnerability in TYPO3 Core http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2011-002/ http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=641682
Use CVE-2011-3583 for this.
2. TYPO3-CORE-SA-2011-003: Improper error handling could lead to cache flooding in TYPO3 Core http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2011-003/ http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=641683
Use CVE-2011-3584 for this. Thanks. -- JB
Current thread:
- CVE requests: Typo3 Moritz Muehlenhoff (Sep 26)
- Re: CVE requests: Typo3 Josh Bressers (Sep 30)