Gentoo Bug 202071 - www-apps/wordpress < 2.3.2 SQL injection vulnerability (CVE-2007-6318)

First Last Prev Next No search results available Search page Enter new bug

Bug#:	202071
Alias:
Product:
Component:
Status:	RESOLVED
Resolution:	FIXED
Assigned To:	Gentoo Security <security@gentoo.org>

Hardware:
OS:
Version:
Priority:
Severity:

Reporter:	Lars Hartmann <lars@chaotika.org>
Add CC:
CC:

URL:
Summary:
Status Whiteboard:
Keywords:

Flags:			Requestee:
	Pending
	Approved
	Assigned_To		()

Filename	Description	Type	Creator	Created	Size	Actions
Create a New Attachment (proposed patch, testcase, etc.)						View All

Bug 202071 depends on:			Show dependency tree
Bug 202071 blocks:			Show dependency tree

Additional Comments: (this is where you put emerge --info)

Add to CC list

Not eligible to see or edit group visibility for this bug.

Leave as RESOLVED FIXED
Reopen bug
Mark bug as VERIFIED
Mark bug as CLOSED

View Bug Activity | Format For Printing | XML | Clone This Bug

Description:

Opened: 2007-12-12 18:23 0000

SQL injection vulnerability in wp-includes/query.php in WordPress 2.3.1 and
earlier allows remote attackers to execute arbitrary SQL commands via the s
parameter, when DB_CHARSET is set to (1) Big5, (2) GBK, or possibly other
character set encodings that support a "\" in a multibyte character.

Reproducible: Always

------- Comment #1 From Robert Buchholz 2007-12-13 01:28:03 0000 -------

Feel free to cc maintainers and set a whiteboard as proposal yourself ;-)

------- Comment #2 From Robert Buchholz 2007-12-13 01:28:21 0000 -------

web-apps, please advise.

------- Comment #3 From Gunnar Wrobel 2007-12-13 06:23:34 0000 -------

No patch available and I don't see a chance at fixing it myself. Should we mask
it again?

------- Comment #4 From Tomas Hoger 2007-12-13 07:50:31 0000 -------

Upstream bug: http://trac.wordpress.org/ticket/5455

------- Comment #5 From Robert Buchholz 2007-12-13 12:22:05 0000 -------

(In reply to comment #3)
> No patch available and I don't see a chance at fixing it myself. Should we mask
> it again? 

No need to jump to a mask if we can fix it within target delay, which is 40
days for ~X. Let's give the Wordpress folks some days.

------- Comment #6 From Gunnar Wrobel 2008-01-08 06:30:26 0000 -------

Added 2.3.2 to the tree. All archs unstable. Removed insecure versions. webapps
done here.

First Last Prev Next No search results available Search page Enter new bug

Bugzilla Bug 202071

www-apps/wordpress < 2.3.2 SQL injection vulnerability (CVE-2007-6318)

Last modified: 2008-01-08 08:21:12 0000