oss-sec mailing list archives
Re: CVE request: lxr
From: Josh Bressers <bressers () redhat com>
Date: Mon, 3 May 2010 16:22:29 -0400 (EDT)
----- "Raphael Geissert" <geissert () debian org> wrote:
Hi, While working on an update for lxr the following commit by upstream that fixes an XSS vulnerability in the search page was found:Fix XSS exploit in title stringhttp://lxr.cvs.sourceforge.net/viewvc/lxr/lxr/lib/LXR/Common.pm?r1=1.63&r2=1.64 It does not seem to be covered by CVE-2009-4497. Please assign an id. Thanks in advance.
Please use CVE-2010-1448 for this. Thanks. -- JB
Current thread:
- Re: CVE request: lxr, (continued)
- Re: CVE request: lxr Dan Rosenberg (May 03)
- Re: CVE request: lxr Henri Salo (May 03)
- Re: CVE request: lxr Josh Bressers (May 03)
- Re: CVE request: lxr Henri Salo (May 03)
- Re: CVE request: lxr Dan Rosenberg (May 03)
- Re: CVE request: lxr Henri Salo (May 03)
- Re: CVE request: lxr Steven M. Christey (May 06)
- Re: CVE request: lxr Dan Rosenberg (May 06)
- Re: CVE request: lxr Josh Bressers (May 14)
- Re: CVE request: lxr Dan Rosenberg (May 14)
- Re: CVE request: lxr Josh Bressers (May 14)
- Re: CVE request: lxr Dan Rosenberg (May 03)