oss-sec mailing list archives
Re: CVE request: xss in pecl-apc before 3.1.4
From: Pierre Joye <pierre.php () gmail com>
Date: Tue, 14 Sep 2010 21:26:20 +0200
thanks, added to the release info. On Tue, Sep 14, 2010 at 9:18 PM, Josh Bressers <bressers () redhat com> wrote:
Please use CVE-2010-3294. Thanks. -- JB ----- "Hanno Böck" <hanno () hboeck de> wrote:http://pecl.php.net/package-changelog.php?package=APC&release=3.1.4 - Fixed potential XSS in apc.php (Pierre, Matt Chapman) This is a minor issue as this usually doesn't get installed and should only be used for debugging-purposes, but still, deserves a CVE. -- Hanno Böck Blog: http://www.hboeck.de/ GPG: 3DBD3B20 Jabber/Mail: hanno () hboeck de http://schokokeks.org - professional webhosting
-- Pierre @pierrejoye | http://blog.thepimp.net | http://www.libgd.org
Current thread:
- CVE request: xss in pecl-apc before 3.1.4 Hanno Böck (Sep 13)
- Re: CVE request: xss in pecl-apc before 3.1.4 Josh Bressers (Sep 14)
- Re: CVE request: xss in pecl-apc before 3.1.4 Pierre Joye (Sep 14)
- Re: CVE request: xss in pecl-apc before 3.1.4 Josh Bressers (Sep 14)