oss-sec mailing list archives

Re: CVE request for Drupal contributed module

From: Kurt Seifried <kseifried () redhat com>
Date: Thu, 06 Jun 2013 23:42:41 -0600

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 06/06/2013 01:51 PM, Forest Monsen wrote:

Hi there -- can we get a CVE identifier for:

SA-CONTRIB-2013-051 - Services - Cross site request forgery (CSRF) 
https://drupal.org/node/2012982

? Thanks.

Best, Forest


Please use CVE-2013-2158 for this issue.

- -- 
Kurt Seifried Red Hat Security Response Team (SRT)
PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.13 (GNU/Linux)
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=oiPB
-----END PGP SIGNATURE-----

Current thread:

CVE Request for Drupal contributed module Forest Monsen (May 01)
- Re: CVE Request for Drupal contributed module Kurt Seifried (May 01)
- <Possible follow-ups>
- CVE request for Drupal contributed module Forest Monsen (Jun 06)
  - Re: CVE request for Drupal contributed module Kurt Seifried (Jun 06)
- CVE request for Drupal contributed module Forest Monsen (Jun 19)
  - Re: CVE request for Drupal contributed module Kurt Seifried (Jun 20)