Bug 362509

Summary:

<www-apps/joomla-1.5.23: Information Disclosure Vulnerability

Product:

Gentoo Security

Reporter:

Tim Sammut (RETIRED) <underling>

Component:

Vulnerabilities

Assignee:

Gentoo Security <security>

Status:

RESOLVED FIXED

Severity:

normal

CC:

alexanderyt, fauli, oli.huber, themgt, web-apps

Priority:

Normal

Version:

unspecified

Hardware:

All

OS:

Linux

URL:

http://developer.joomla.org/security/news/9-security/10-core-security/340-20110401-core-information-disclosure.html

Whiteboard:

~4 [noglsa]

Package list:

Runtime testing required:

---

Attachments:

Description	Flags
ebuild diff	none
full ebuild	none

Description Tim Sammut (RETIRED) gentoo-dev

2011-04-07 19:39:57 UTC

From the upstream advisory at $URL:

Description

Inadequate error checking causes information disclosure.
Affected Installs

Joomla! version 1.5.22 and all previous 1.5 versions

Solution

Upgrade to the latest Joomla! version (1.5.23 or later)

Reported by Hannes Papenberg

Comment 1 Olivier Huber 2011-04-07 20:08:17 UTC

Created attachment 268923 [details, diff]
ebuild diff

Comment 2 Olivier Huber 2011-04-07 20:12:36 UTC

Created attachment 268925 [details]
full ebuild

Thanks for the report.
I've tested the new version and the upgrade was OK.

Comment 3 Tim Sammut (RETIRED) gentoo-dev

2011-04-09 16:01:03 UTC

*** Bug 362621 has been marked as a duplicate of this bug. ***

Comment 4 Christian Faulhammer (RETIRED) gentoo-dev

2011-04-09 18:51:31 UTC

Thanks Olivier, bumped.  Closing.

Comment 5 Tim Sammut (RETIRED) gentoo-dev

2011-04-09 19:41:16 UTC

(In reply to comment #4)
> Thanks Olivier, bumped.  Closing.

Thank you for the bump; please don't close security bugs.