oss-sec mailing list archives

Re: CVE request: dotclear before 2.2.3

From: Franck Paul <carnet.franck.paul () gmail com>
Date: Thu, 14 Apr 2011 07:56:54 +0000 (UTC)

Hanno Böck <hanno@...> writes:


My french isn't that good:
http://fr.dotclear.org/blog/post/2011/04/01/Dotclear-2.2.3

But that sounds like a security issue:
"Pour en revenir à cette version, signalons qu'elle contient la
correction d'une faille de sécurité signalée il y a quelque temps par
Raphaël — que nous remercions au passage —, ainsi qu'une correction
attendue pour la génération manuelle des miniatures."



Hi,

Yes it's a minor security issue fixed by this new release.

Regards
Franck

Current thread:

CVE request: dotclear before 2.2.3 Hanno Böck (Apr 13)
- Re: CVE request: dotclear before 2.2.3 Franck Paul (Apr 14)
- Re: CVE request: dotclear before 2.2.3 Josh Bressers (Apr 15)
  - Re: CVE request: dotclear before 2.2.3 JcDenis (Apr 15)