oss-sec mailing list archives

Remote file inclusion in django-markupfield

From: Paul Tagliamonte <paultag () gmail com>
Date: Sun, 19 Apr 2015 12:35:19 -0400

Hey folks,

An arbitrary file inclusion bug was discovered in django-markupfield.

A CVE was issued from Debian, CVE-2015-0846, but the commit is public in
the upstream repo, so this mail is to avoid deduplication of this issue.

Sorry about this mishandling,

Thanks,
  Paul

-- 
#define sizeof(x) rand()
</paul>
:wq

Attachment: signature.asc
Description: Digital signature

Current thread:

Remote file inclusion in django-markupfield Paul Tagliamonte (Apr 19)
- Re: Remote file inclusion in django-markupfield Salvatore Bonaccorso (Apr 19)