Summary: | www-apps/joomla "com_jce" file inclusion | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Emanuele Gentili <bathym> |
Component: | Vulnerabilities | Assignee: | Gentoo Web Application Packages Maintainers <web-apps> |
Status: | RESOLVED UPSTREAM | ||
Severity: | critical | CC: | beu, taviso |
Priority: | Highest | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
Emanuele Gentili
2006-12-22 15:52:51 UTC
upstram (joomla) mailed. Joomla has never been marked stable on any security supported architecture, so the security team wont handle this bug. It looks like that file is some random third party extension http://extensions.joomla.org/component/option,com_mtree/task,viewlink/link_id,1157/Itemid,35/ There is no jce.php in joomla-1.0.11.tar.bz2, and the string "com_jce" doesnt appear once in the joomla distribution, afaict Reassigning to web-apps... file upstream |