oss-sec mailing list archives
CVE request: sympa (try again)
From: micah <micah () riseup net>
Date: Fri, 11 May 2012 14:03:21 -0400
Hi,
Please assign a CVE for Sympa, any version prior to 6.1.11. It is
possible to open the archive management ("arc_manage") page for any
list, even those set to only be available to members, giving anyone the
option to download the archive, or delete the archive.
http://www.sympa.org/distribution/latest-stable/NEWS
https://sourcesup.renater.fr/scm/viewvc.php/branches/sympa-6.0-branch/wwsympa/wwsympa.fcgi.in?root=sympa&r1=6706&r2=7358&pathrev=7358
thank you,
micah
ps - for some reason the previous message is formatted strange, so I'm
sending this one without the signature
--
Current thread:
- CVE request: sympa (try again) micah (May 11)
- ezmlm signature mangling [was: Re: CVE request: sympa (try again)] Daniel Kahn Gillmor (May 11)
- Re: ezmlm signature mangling [was: Re: CVE request: sympa (try again)] Solar Designer (May 12)
- Re: CVE request: sympa (try again) Kurt Seifried (May 11)
- Re: CVE request: sympa (try again) micah anderson (May 12)
- Re: CVE request: sympa (try again) Kurt Seifried (May 12)
- Re: CVE request: sympa (try again) micah anderson (May 15)
- Re: CVE request: sympa (try again) Kurt Seifried (May 15)
- Re: CVE request: sympa (try again) micah anderson (May 12)
- ezmlm signature mangling [was: Re: CVE request: sympa (try again)] Daniel Kahn Gillmor (May 11)