http://moinmo.in/SecurityFixes http://moinmo.in/MoinMoinBugs/AclHierarchicPageAclSupercededByAclRightsAfter Reproducible: Didn't try Steps to Reproduce: http://moinmo.in/MoinMoinBugs/AclHierarchicPageAclSupercededByAclRightsAfter
* Security fix: a check in the user form processing was not working as expected, leading to a major ACL and superuser priviledge escalation problem. If you use ACL entries other than "Known:" or "All:" and/or a non-empty superuser list, you need to urgently install this upgrade. http://hg.moinmo.in/moin/1.6/rev/f405012e67af
in cvs
Arches, please test and mark stable: =www-apps/moinmoin-1.6.3 Target keywords : "amd64 ppc release sparc x86"
amd64/x86 stable
ppc stable
sparc stable
Fixed in release snapshot.
GLSA vote, I vote YES.
YES too, request filed.
GLSA 200805-09