oss-sec mailing list archives

CVE request: various security flaws in dokuwiki

From: Martin Prpic <mprpic () redhat com>
Date: Mon, 13 Oct 2014 14:26:14 +0200

Hi, could CVEs please be assigned to the following issues?

The following security-related flaws have been fixed in the 2014-05-05 and 2014-09-29 releases of dokuwiki:

* Security Hotfix 2014-05-05a for Issue 765:

https://github.com/splitbrain/dokuwiki/issues/765

* Security Hotfix 2014-05-05b for AD/LDAP auth plugin related problem
  Security fix for AD/LDAP auth plugin related problem:

http://www.freelists.org/post/dokuwiki/Fwd-Dokuwiki-maybe-security-issue-Null-byte-poisoning-in-LDAP-authentication

Red Hat Bugzilla bug: https://bugzilla.redhat.com/show_bug.cgi?id=1150131

-- 
Martin Prpič / Red Hat Product Security

Current thread:

CVE request: various security flaws in dokuwiki Martin Prpic (Oct 13)
- Re: CVE request: various security flaws in dokuwiki cve-assign (Oct 16)