'Re: [oss-security] CVE requests: Typo3'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] CVE requests: Typo3
From:       Josh Bressers <bressers () redhat ! com>
Date:       2011-09-30 14:58:42
Message-ID: 7ddd8d80-91f0-4203-95de-382c5935c433 () zmail01 ! collab ! prod ! int ! phx2 ! redhat ! com
[Download RAW message or body]



----- Original Message -----
> Hi,
> please assign CVE IDs for two new Typo3 issues:
> 
> 1. TYPO3-CORE-SA-2011-002: Potential SQL injection vulnerability in TYPO3
> Core
> http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2011-002/
> http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=641682

Use CVE-2011-3583 for this.

> 
> 2. TYPO3-CORE-SA-2011-003: Improper error handling could lead to cache
> flooding in TYPO3 Core
> http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2011-003/
> http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=641683
> 

Use CVE-2011-3584 for this.

Thanks.

-- 
    JB
[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic