Re: [oss-security] Re: CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition

* [2011-02-23 14:06:58 -0500] Josh Bressers wrote:

>> Is Redhat packaging RT now, or are you just handling the CVEs?
>
>I'm not aware of Red Hat packaging RT. I'm just assign CVE ids to
>public issues.

RT3 is packaged in Fedora and EPEL.

-- Vincent Danen / Red Hat Security Response Team

• This message: [ Message body ]
• Next message: Ralf Corsepius: "Re: [oss-security] Re: CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition"
• Previous message: psy: "[oss-security] XSSer v1.5 -beta- aka "Swarm Edition!" released."
• In reply to: Josh Bressers: "Re: [oss-security] Re: CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition"
• Next in thread: Ralf Corsepius: "Re: [oss-security] Re: CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition"
• Reply: Ralf Corsepius: "Re: [oss-security] Re: CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition"

• Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]