Hi, * Henri Salo <henri@nerv.fi> [2010-07-28 17:28]: > > Issue DSA-2022-1 got CVE-identifiers: > > CVE-2010-1189: > a CSS validation issue was discovered which allows editors to display > external images in wiki pages. > > CVE-2010-1190: > a data leakage vulnerability was discovered in thumb.php which affects > wikis which restrict access to private files using img_auth.php, or > some similar scheme. Those are already listed on: http://security-tracker.debian.org/tracker/DSA-2022-1 Cheers Nico -- Nico Golde - http://www.ngolde.de - nion@jabber.ccc.de - GPG: 0xA0A0AAAA For security reasons, all text in this mail is double-rot13 encrypted.
Attachment:
pgp0kEJqzLGuS.pgp
Description: PGP signature