Re: CVE request: Drupal SA-CORE-2012-003

[Kurt Seifried <kseifried () redhat com>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 10/29/2012 01:53 PM, Greg Knaddison wrote:
> Joshua Brauer is responsible for all CVE requests for the Drupal
> project.
>
> We added "CVE: Requested" to our template to reduce the
> possibility that someone else will see the advisory and request a
> CVE on our behalf.

Ah ok, please request them then, I'm here to serve.

> On 10/29/2012 12:17 PM, Moritz Muehlenhoff wrote:
> > > > > > Hi, please assign a CVE ID for SA-CORE-2012-003: 
> > > > > > http://drupal.org/node/1815912
> > > > > >
> > > > > > Cheers, Moritz

SA-CORE-2012-003 - Drupal core - Arbitrary PHP code execution
Please use CVE-2012-4553 for this issue.

SA-CORE-2012-003 - Drupal core - Information disclosure
Please use CVE-2012-4554 for this issue.


- -- 
Kurt Seifried Red Hat Security Response Team (SRT)
PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=pbHE
-----END PGP SIGNATURE-----