DSA-2022-1 / CVE-identifiers
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Issue DSA-2022-1 got CVE-identifiers: CVE-2010-1189: a CSS validation issue was discovered which allows editors to display external images in wiki pages. CVE-2010-1190: a data leakage vulnerability was discovered in thumb.php which affects wikis which restrict access to private files using img_auth.php, or some similar scheme. References: http://seclists.org/oss-sec/2010/q1/189 Best regards, Henri Salo -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.9 (GNU/Linux) iEYEARECAAYFAkxQRAYACgkQXf6hBi6kbk/6YACbBvKmsa4hsVbIWv29Hll5tRjP JyoAoJo0XmBwDCW/aFMZb7A3+geJcZva =qTIq -END PGP SIGNATURE-
Re: DSA-2022-1 / CVE-identifiers
Hi, * Henri Salo he...@nerv.fi [2010-07-28 17:28]: Issue DSA-2022-1 got CVE-identifiers: CVE-2010-1189: a CSS validation issue was discovered which allows editors to display external images in wiki pages. CVE-2010-1190: a data leakage vulnerability was discovered in thumb.php which affects wikis which restrict access to private files using img_auth.php, or some similar scheme. Those are already listed on: http://security-tracker.debian.org/tracker/DSA-2022-1 Cheers Nico -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0 For security reasons, all text in this mail is double-rot13 encrypted. pgpkEco23mKEr.pgp Description: PGP signature
DSA-2022-1 / CVE-identifiers
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Issue DSA-2022-1 got CVE-identifiers: CVE-2010-1189: a CSS validation issue was discovered which allows editors to display external images in wiki pages. CVE-2010-1190: a data leakage vulnerability was discovered in thumb.php which affects wikis which restrict access to private files using img_auth.php, or some similar scheme. References: http://seclists.org/oss-sec/2010/q1/189 Best regards, Henri Salo -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.9 (GNU/Linux) iEYEARECAAYFAkxQRAYACgkQXf6hBi6kbk/6YACbBvKmsa4hsVbIWv29Hll5tRjP JyoAoJo0XmBwDCW/aFMZb7A3+geJcZva =qTIq -END PGP SIGNATURE-