Summary: | <www-apps/moinmoin-1.8.4 XSS (CVE-2009-1482) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Alex Legler (RETIRED) <a3li> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | web-apps, xixsimplicityxix |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://moinmo.in/SecurityFixes | ||
Whiteboard: | B4 [noglsa] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | |||
Bug Blocks: | 256621, 273858 |
Description
Alex Legler (RETIRED)
2009-05-04 08:58:39 UTC
This is fixed in 1.8.3 and there are patches for 1.7 in the upstream Hg at http://hg.moinmo.in/moin/1.7/ (in case you want to keep the 1.7 branch). *** Bug 262441 has been marked as a duplicate of this bug. *** Arches, please test and mark stable: =www-apps/moinmoin-1.8.4 Target keywords : "amd64 ppc sparc x86" Removed 1.7* as it is EOL. x86 stable + 12 Jun 2009; <chainsaw@gentoo.org> moinmoin-1.8.4.ebuild: + Marked stable on AMD64. Tested on a dual dual-core Opteron 2218 system + using Apache 2.2.11 and mod_fcgid 2.2. For security bugs #268565 and + #273858. sparc stable ppc done XSS in webapps = NO. NO. Closing. |