subject:"Bug#331206\: bugzilla\: Two information disclosure vulnerabilities in Bugzilla"

Processed: Re: Bug#331206: bugzilla: Two information disclosure vulnerabilities in Bugzilla

2005-10-02 Thread Debian Bug Tracking System

Processing commands for [EMAIL PROTECTED]: > tags 331206 + confirmed Bug#331206: bugzilla: Two information disclosure vulnerabilities in Bugzilla Tags were: security Tags added: confirmed > thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking

Bug#331206: bugzilla: Two information disclosure vulnerabilities in Bugzilla

2005-10-02 Thread Alexis Sukrieh

tags 331206 + confirmed thanks * Moritz Muehlenhoff ([EMAIL PROTECTED]) disait : > [...] > > Please see http://www.bugzilla.org/security/2.18.4/ for the full advisory. > 2.18.4 fixes these issue. Ok, I'll then package 2.18.4 as soon as possible for closing those issues. Thanks for the report. --

Bug#331206: bugzilla: Two information disclosure vulnerabilities in Bugzilla

2005-10-02 Thread Moritz Muehlenhoff

Package: bugzilla Version: 2.18.3-2 Severity: grave Tags: security Justification: user security hole Two information disclosure vulnerabilities have been found in Bugzilla: + It is possible to bypass the "user visibility groups" restrictions if user-matching is turned on in "substring" mode. +

Processed: Re: Bug#331206: bugzilla: Two information disclosure vulnerabilities in Bugzilla

Bug#331206: bugzilla: Two information disclosure vulnerabilities in Bugzilla

Bug#331206: bugzilla: Two information disclosure vulnerabilities in Bugzilla

3 matches

Site Navigation

Mail list logo

Footer information