[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: Re: [oss-security] CVE request: dokuwiki
From: Solar Designer <solar () openwall ! com>
Date: 2010-01-19 21:42:13
Message-ID: 20100119214213.GA8969 () openwall ! com
[Download RAW message or body]
In case anyone needs this extra info, here are the commits of the fixes
and of the vulnerable code:
On Tue, Jan 19, 2010 at 03:19:37PM -0500, Josh Bressers wrote:
> http://bugs.splitbrain.org/index.php?do=details&task_id=1847
> http://secunia.com/advisories/38183/
> - directory structure information leak
> - insufficient permissions checks, allowing attacker to change ACLs
http://github.com/splitbrain/dokuwiki/commit/96a47e5d480e6c5b3aab1884a8536ec4b8ca2fab
http://github.com/splitbrain/dokuwiki/commit/8c5215b744582107f352aa4ccea4182296674250
> http://bugs.splitbrain.org/index.php?do=details&task_id=1853
> http://secunia.com/advisories/38205/
> - missing CSRF protections in ACL manager
http://github.com/splitbrain/dokuwiki/commit/d7554c0bb25241c1299af28785878d31ad02dbad
http://github.com/splitbrain/dokuwiki/commit/cce7ae9882da5682192e7153f5b2b5cfdcf5f0ec
According to the blog post, "all bugs are in the new ACL Manager
introduced in 2008-05-05". The vulnerable code appears to have been
committed on "Sat Nov 17 07:57:40 -0800 2007":
http://github.com/splitbrain/dokuwiki/commit/2a3623da3390f0118660d541928ae8c635631b3d#diff-1
According to http://www.dokuwiki.org/changes , there was no release
between 2007-06-26 and 2008-05-05, which must be why only the latter
date was mentioned.
> So for CVE assignment:
>
> CVE-2010-0287
> - directory structure information leak
>
> CVE-2010-0288
> - insufficient permissions checks, allowing attacker to change ACLs
>
>
> CVE-2010-0289
> - missing CSRF protections in ACL manager
Alexander
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic