oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: CVE request for Drupal contributed modules

From: Kurt Seifried <kseifried () redhat com>
Date: Fri, 18 Oct 2013 22:34:56 -0600
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 10/18/2013 03:24 PM, Forest Monsen wrote:

Hi there,

I'd like to request CVE identifiers for:

SA-CONTRIB-2013-079 - Context - Multiple vulns (Two issues:
Arbitrary PHP code execution, and access bypass.) 
https://drupal.org/node/2113317

SA-CONTRIB-2013-080 - Simplenews - Cross Site Scripting (XSS) 
https://drupal.org/node/2113515

Thanks!

best, Forest



CVE-2013-4445 Drupal SA-CONTRIB-2013-079 - Context - access bypass

CVE-2013-4446 Drupal SA-CONTRIB-2013-079 - Context - PHP code exec

CVE-2013-4447 Drupal SA-CONTRIB-2013-080 - Simplenews - Cross Site
Scripting

Thanks.

- -- 
Kurt Seifried Red Hat Security Response Team (SRT)
PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.15 (GNU/Linux)
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=CN+B
-----END PGP SIGNATURE-----
Previous By Date Next
Previous By Thread Next

Current thread: