Re: Please help with discrepancies in CVE-2011-3578

To: sils@powered-by-linux.com
Cc: debian-security-tracker@lists.debian.org, midget@debian.org
Subject: Re: Please help with discrepancies in CVE-2011-3578
From: "Thijs Kinkhorst" <thijs@debian.org>
Date: Sat, 16 Jun 2012 13:09:43 +0200
Message-id: <[🔎] cb87fba3202378c82f3a84b5e85e6544.squirrel@wm.kinkhorst.nl>
In-reply-to: <[🔎] 439276f3a0145693b71a312a110793c7@localhost>
References: <[🔎] 439276f3a0145693b71a312a110793c7@localhost>

On Sat, June 16, 2012 00:40, sils@powered-by-linux.com wrote:
> Hi Team,
>
> I had prepared a new security-stable version for mantis package to fix
> some new CVE's, and I found out that CVE-2011-3578 [1], patched on mantis
> 1.1.8+dfsg-10squeeze1, from 2011, was not yet updated in the security
> tracker.
>
> The CVE-2011-3578 was not yet assigned when the security package,
> including the patch [2],
> 12-Fix-640297-LFI-XSS-injection-bug-action-group-1.diff [3], was uploaded
> and fixed.
>
> Please, could you update the tracker and fix it?

Yes, I updated it.

Will you add the CVE to squeeze1's changelog, for posterity?


Cheers,
Thijs

Reply to:

Follow-Ups:
- Re: Please help with discrepancies in CVE-2011-3578
  - From: <sils@powered-by-linux.com>
- Re: Please help with discrepancies in CVE-2011-3578
  - From: Dario Minnucci <midget@debian.org>

References:
- Please help with discrepancies in CVE-2011-3578
  - From: <sils@powered-by-linux.com>

Prev by Date: External check
Next by Date: Re: Please help with discrepancies in CVE-2011-3578
Previous by thread: Please help with discrepancies in CVE-2011-3578
Next by thread: Re: Please help with discrepancies in CVE-2011-3578
Index(es):
- Date
- Thread