oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

CVE Request: JIRA Issues

From: Eren Türkay <eren () pardus org tr>
Date: Fri, 16 Apr 2010 15:47:24 +0300
Hello,

As you probably know, Apache.org services were taken down due to the XSS and 
privilege escalation flaws in JIRA. Atlassian patched the issues, and released 
an advisory.

Bug entires:

XSS Vulnerability: http://jira.atlassian.com/browse/JRA-20994
Privilege escalation: http://jira.atlassian.com/browse/JRA-20995

JIRA Advisory: 
http://confluence.atlassian.com/display/JIRA/JIRA+Security+Advisory+2010-04-16

Could anyone assign CVE IDs for these issues?

Thanks,
-- 
Eren
Previous By Date Next
Previous By Thread Next

Current thread: