Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 362509 - <www-apps/joomla-1.5.23: Information Disclosure Vulnerability
Summary: <www-apps/joomla-1.5.23: Information Disclosure Vulnerability
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL: http://developer.joomla.org/security/...
Whiteboard: ~4 [noglsa]
Keywords:
: 362621 (view as bug list)
Depends on:
Blocks:
 
Reported: 2011-04-07 19:39 UTC by Tim Sammut (RETIRED)
Modified: 2011-04-09 19:41 UTC (History)
5 users (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
ebuild diff (joomla-1.5.23.patch,544 bytes, patch)
2011-04-07 20:08 UTC, Olivier Huber 		no flags Details | Diff
full ebuild (joomla-1.5.23.ebuild,1.45 KB, text/plain)
2011-04-07 20:12 UTC, Olivier Huber 		no flags Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Tim Sammut (RETIRED) gentoo-dev 2011-04-07 19:39:57 UTC 
From the upstream advisory at $URL:

Description

Inadequate error checking causes information disclosure.
Affected Installs

Joomla! version 1.5.22 and all previous 1.5 versions

Solution

Upgrade to the latest Joomla! version (1.5.23 or later)

Reported by Hannes Papenberg
Comment 1 Olivier Huber 2011-04-07 20:08:17 UTC 
Created attachment 268923 [details, diff]
ebuild diff
Comment 2 Olivier Huber 2011-04-07 20:12:36 UTC 
Created attachment 268925 [details]
full ebuild

Thanks for the report.
I've tested the new version and the upgrade was OK.
Comment 3 Tim Sammut (RETIRED) gentoo-dev 2011-04-09 16:01:03 UTC 
*** Bug 362621 has been marked as a duplicate of this bug. ***
Comment 4 Christian Faulhammer (RETIRED) gentoo-dev 2011-04-09 18:51:31 UTC 
Thanks Olivier, bumped.  Closing.
Comment 5 Tim Sammut (RETIRED) gentoo-dev 2011-04-09 19:41:16 UTC 
(In reply to comment #4)
> Thanks Olivier, bumped.  Closing.

Thank you for the bump; please don't close security bugs.