oss-sec mailing list archives

Re: CVE request: fluxbb before 1.4.7

From: Josh Bressers <bressers () redhat com>
Date: Tue, 18 Oct 2011 15:16:08 -0400 (EDT)

Please use CVE-2011-3621.

Thanks.

--
    JB

----- Original Message -----

http://fluxbb.org/forums/viewtopic.php?id=5751

"This is a security release, however only affects anyone running
FluxBB
behind a reverse proxy, with FORUM_BEHIND_REVERSE_PROXY enabled - we
expect this to be a small number of users."

Whatever that means... I suggest something like
"Unknown security vulnerability related to reverse proxying"

--
Hanno Böck            mail/jabber: hanno () hboeck de
GPG: BBB51E42         http://www.hboeck.de/

Current thread:

CVE request: fluxbb before 1.4.7 Hanno Böck (Oct 10)
- Re: CVE request: fluxbb before 1.4.7 Henri Salo (Oct 13)
- Re: CVE request: fluxbb before 1.4.7 Josh Bressers (Oct 18)