Re: [oss-security] CVE Request -- pootle -- XSS via 'match_names' parameter on translate.html page

Please use CVE-2010-4245

Thanks.

-- JB ----- "Jan Lieskovsky" <jlieskov@redhat.com> wrote: > Hello Steve, vendors, > > looks like the following didn't get a CVE identifier yet: > [1] https://bugzilla.redhat.com/show_bug.cgi?id=647832 > [2] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=604060 > [3] http://forums.cnet.com/7726-6132_102-5022830.html > [4] > http://sourceforge.net/projects/translate/files//Pootle/2.1.2/RELEASE.txt/view > [5] http://www.xssed.com/mirror/70160/ > [6] http://secunia.com/advisories/42185/ > > Could you please allocate one? > > Thanks && Regards, Jan. > -- > Jan iankko Lieskovsky / Red Hat Security Response Team

• This message: [ Message body ]
• Next message: Steven M. Christey: "[oss-security] CVE assignments for Wireshark LDSS / ZCL issues"
• Previous message: Josh Bressers: "Re: [oss-security] CVE request: kernel: mm: mem allocated invisible to oom_kill() when not attached to any threads"
• In reply to: Jan Lieskovsky: "[oss-security] CVE Request -- pootle -- XSS via 'match_names' parameter on translate.html page"

• Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]