Debian Bug report logs -
#696949
[CVE-2012-6080] moin: path traversal vulnerability
Reported by: Henri Salo <henri@nerv.fi>
Date: Sat, 29 Dec 2012 19:27:05 UTC
Severity: important
Tags: security
Found in version 1.9.5-2
Fixed in version 1.9.5-4
Done: Steve McIntyre <steve@einval.com>
Bug is archived. No further changes may be made.
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, Steve McIntyre <93sam@debian.org>:
Bug#696949; Package moin.
(Sat, 29 Dec 2012 19:27:07 GMT) (full text, mbox, link).
Acknowledgement sent
to Henri Salo <henri@nerv.fi>:
New Bug report received and forwarded. Copy sent to Steve McIntyre <93sam@debian.org>.
(Sat, 29 Dec 2012 19:27:07 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Package: moin
Version: 1.9.5-2
Severity: important
Tags: security
Details can be found at: http://moinmo.in/SecurityFixes
A fix is available at: http://hg.moinmo.in/moin/1.9/rev/3c27131a3c52
CVE request: http://www.openwall.com/lists/oss-security/2012/12/29/8
- Henri Salo
Information forwarded
to debian-bugs-dist@lists.debian.org, Steve McIntyre <93sam@debian.org>:
Bug#696949; Package moin.
(Sat, 29 Dec 2012 19:42:05 GMT) (full text, mbox, link).
Acknowledgement sent
to Steve McIntyre <steve@einval.com>:
Extra info received and forwarded to list. Copy sent to Steve McIntyre <93sam@debian.org>.
(Sat, 29 Dec 2012 19:42:05 GMT) (full text, mbox, link).
Message #10 received at 696949@bugs.debian.org (full text, mbox, reply):
close 696949 1.9.5-4
thanks
On Sat, Dec 29, 2012 at 09:23:55PM +0200, Henri Salo wrote:
>Package: moin
>Version: 1.9.5-2
>Severity: important
>Tags: security
>
>Details can be found at: http://moinmo.in/SecurityFixes
>A fix is available at: http://hg.moinmo.in/moin/1.9/rev/3c27131a3c52
>CVE request: http://www.openwall.com/lists/oss-security/2012/12/29/8
Already fixed in incoming; thanks for the report!
--
Steve McIntyre, Cambridge, UK. steve@einval.com
Can't keep my eyes from the circling sky,
Tongue-tied & twisted, Just an earth-bound misfit, I...
Marked as fixed in versions 1.9.5-4.
Request was from Steve McIntyre <steve@einval.com>
to control@bugs.debian.org.
(Sat, 29 Dec 2012 19:42:10 GMT) (full text, mbox, link).
Marked Bug as done
Request was from Steve McIntyre <steve@einval.com>
to control@bugs.debian.org.
(Sat, 29 Dec 2012 19:42:10 GMT) (full text, mbox, link).
Notification sent
to Henri Salo <henri@nerv.fi>:
Bug acknowledged by developer.
(Sat, 29 Dec 2012 19:42:11 GMT) (full text, mbox, link).
Changed Bug title to '[CVE-2012-6080] moin: path traversal vulnerability' from 'moin: path traversal vulnerability'
Request was from Salvatore Bonaccorso <carnil@debian.org>
to control@bugs.debian.org.
(Sun, 30 Dec 2012 06:30:03 GMT) (full text, mbox, link).
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Tue, 29 Jan 2013 07:26:28 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Wed Jun 19 13:31:53 2019;
Machine Name:
buxtehude
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.
Vulmon