oss-sec mailing list archives
Re: Re: CVE request: Bugzilla (Unauthorized Bug Change, XSS, Account Impersonation)
From: "Steven M. Christey" <coley () linus mitre org>
Date: Tue, 13 May 2008 11:56:31 -0400 (EDT)
On Tue, 13 May 2008, Hanno [utf-8] B??ck wrote:
I think this should be "3.1.3 and before" ? As 3.1.3 is also affected according to the upstream advisory.
Yes, fixed - thanks. - Steve
Current thread:
- CVE request: Bugzilla (Unauthorized Bug Change, XSS, Account Impersonation) Christian Hoffmann (May 07)
- Re: CVE request: Bugzilla (Unauthorized Bug Change, XSS, Account Impersonation) Steven M. Christey (May 07)
- Re: Re: CVE request: Bugzilla (Unauthorized Bug Change, XSS, Account Impersonation) Hanno Böck (May 13)
- Re: Re: CVE request: Bugzilla (Unauthorized Bug Change, XSS, Account Impersonation) Tomas Hoger (May 13)
- Re: Re: CVE request: Bugzilla (Unauthorized Bug Change, XSS, Account Impersonation) Steven M. Christey (May 13)
- Re: Re: CVE request: Bugzilla (Unauthorized Bug Change, XSS, Account Impersonation) Hanno Böck (May 13)
- Re: CVE request: Bugzilla (Unauthorized Bug Change, XSS, Account Impersonation) Steven M. Christey (May 07)