oss-sec mailing list archives
Re: CVE Request for Drupal Contributed Advisories on 2012-04-18
From: Kurt Seifried <kseifried () redhat com>
Date: Wed, 18 Apr 2012 18:28:16 -0600
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 04/18/2012 04:50 PM, Greg Knaddison wrote:
Hello, Two releases today need CVEs: https://drupal.org/node/1538436 SA-CONTRIB-2012-060 - Commerce Reorder - Cross Site Request Forgery
Please use CVE-2012-2116 for this issue
https://drupal.org/node/1538704 SA-CONTRIB-2012-061 - Gigya - Social optimization - Cross Site Scripting (XSS)
Please use CVE-2012-2117 for this issue
Thanks, Greg -- Director Security Services | +1-720-310-5623 Skype: greg.knaddison | http://twitter.com/greggles | http://acquia.com
- -- Kurt Seifried Red Hat Security Response Team (SRT) PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQIcBAEBAgAGBQJPj1wgAAoJEBYNRVNeJnmTghYP/iksiaHJvjzVANIxIgz8xcFp FA7baM4eWd/ca3DlfkFbtAGYb+5Uya7a3RfgiLda2NHllmZwBWYIdC4PguzpMA+b /Ezw2DhPzxsfWAGwVhI9VogSRZRVsCMA/eiofX+DbyWt7UKRmrwWG08IcWbeb9KA ekRYDU64OGkKSGfitcw+BF4xNlFRlLMAlrvgvKHCYxR7qT9f0SNdfpG1hp2IYQpP XUPl2vC817G6G8YEnxA/2TJM+p9TKJ3TDAG37FzE5IXd5OHVTsh5dG69ofsy2aIM EZ5aI+YmkaRDrISwULZauNrJstGG+hhp/hrn8PbNuwNjxAuYZep+aqT1WCByqWB8 THcYbQHj4EA3UOpBszoLMD4QMfgZULMfqWhYjcQzXET6ssEkDUgSFz937U99TJk9 kvBg8SWSYegbzRnYQG0pSzy13IkZf1PdziS8A3w16RxbUHCpnjJwncuhw1fBasNc 013HB5Ym18mGOciLhceGPnQeGCd+OlbrIJQCGla7VusncPO08OnfX+UgfOP1aGV2 RHqldklOJPg/81z/2IVuqnw2wiWzsxgKY62UZqKW50Ok+uX3euyQvsnEXA0MOlwo 0N8Uoc+9wHhTDJNnTfCxEncoc52isn8+QpGnc++gKSoC+E+tD8v0bBD+AqayAW7F 7eUVQGFUL3S9eBdrzWfX =05wj -----END PGP SIGNATURE-----
Current thread:
- CVE Request for Drupal Contributed Advisories on 2012-04-18 Greg Knaddison (Apr 18)
- Re: CVE Request for Drupal Contributed Advisories on 2012-04-18 Kurt Seifried (Apr 18)