202071 CVE-2007-6318 2007-12-12 18:23 0000 www-apps/wordpress < 2.3.2 SQL injection vulnerability (CVE-2007-6318) 2008-01-08 08:21:12 0000 1 1 1 Unclassified Gentoo Security Vulnerabilities unspecified All Linux RESOLVED FIXED http://www.abelcheung.org/advisory/20071210-wordpress-charset.txt ~3 [noglsa] P2 trivial --- 1 lars@chaotika.org security@gentoo.org lars@chaotika.org 2007-12-12 18:23:35 0000 SQL injection vulnerability in wp-includes/query.php in WordPress 2.3.1 and earlier allows remote attackers to execute arbitrary SQL commands via the s parameter, when DB_CHARSET is set to (1) Big5, (2) GBK, or possibly other character set encodings that support a "\" in a multibyte character. Reproducible: Always rbu@gentoo.org 2007-12-13 01:28:03 0000 Feel free to cc maintainers and set a whiteboard as proposal yourself ;-) rbu@gentoo.org 2007-12-13 01:28:21 0000 web-apps, please advise. wrobel@gentoo.org 2007-12-13 06:23:34 0000 No patch available and I don't see a chance at fixing it myself. Should we mask it again? thoger@redhat.com 2007-12-13 07:50:31 0000 Upstream bug: http://trac.wordpress.org/ticket/5455 rbu@gentoo.org 2007-12-13 12:22:05 0000 (In reply to comment #3) > No patch available and I don't see a chance at fixing it myself. Should we mask > it again? No need to jump to a mask if we can fix it within target delay, which is 40 days for ~X. Let's give the Wordpress folks some days. wrobel@gentoo.org 2008-01-08 06:30:26 0000 Added 2.3.2 to the tree. All archs unstable. Removed insecure versions. webapps done here.