97650 – www-apps/b2evolution is affected by XML_RPC PHP flaw (CAN-2005-1921)

Bug 97650 - www-apps/b2evolution is affected by XML_RPC PHP flaw (CAN-2005-1921)

Summary: www-apps/b2evolution is affected by XML_RPC PHP flaw (CAN-2005-1921)

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	High trivial (vote)
Assignee:	Gentoo Security

URL:
Whiteboard:	~1 [noglsa]
Keywords:

Depends on:
Blocks:

Reported:	2005-07-01 13:26 UTC by Thierry Carrez (RETIRED)
Modified:	2005-07-06 01:15 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
b2evolution.patch (b2evolution.patch,1.13 KB, patch) 2005-07-05 01:38 UTC, Thierry Carrez (RETIRED)	no flags	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Thierry Carrez (RETIRED) gentoo-dev

2005-07-01 13:26:18 UTC

According to GulfTech advisory TikiWiki is also affected.

Comment 1 Thierry Carrez (RETIRED) gentoo-dev

2005-07-05 01:38:13 UTC

Created attachment 62643 [details, diff]
b2evolution.patch

Backported patch from PEAR

Comment 2 Thierry Carrez (RETIRED) gentoo-dev

2005-07-05 01:38:48 UTC

web-apps, please patch and bump (lower prio)

Comment 3 Stuart Herbert (RETIRED) gentoo-dev

2005-07-05 16:40:14 UTC

Patch applied, b2evo rev-bumped.

Best regards,
Stu

Comment 4 Mark Loeser (RETIRED) gentoo-dev

2005-07-05 16:54:21 UTC

Fixed in the tree.

Comment 5 Thierry Carrez (RETIRED) gentoo-dev

2005-07-06 01:15:28 UTC

No GLSA as package was always ~