[Pkg-mediawiki-devel] Bug#504445: SA32559: GeSHi Unspecified Code Execution Vulnerability
Raphael Geissert
atomo64 at gmail.com
Mon Nov 3 23:00:56 UTC 2008
Package: php-geshi
Severity: grave
Version: 1.0.8-1
Tags: security
Hi,
The following SA (Secunia Advisory) id was published for GeSHi.
SA32559[1]:
> A vulnerability has been reported in GeSHI, which can potentially be
> exploited by malicious people to compromise a vulnerable system.
>
> The vulnerability is caused due to an unspecified error, which may allow
> execution of arbitrary code on an affected system.
>
> The vulnerability is reported in versions prior to 1.0.8.1.
If you fix the vulnerability please also make sure to include the SA id in the
changelog entry.
[1]http://secunia.com/Advisories/32559/
Cheers,
--
Raphael Geissert - Debian Maintainer
www.debian.org - get.debian.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: This is a digitally signed message part.
Url : http://lists.alioth.debian.org/pipermail/pkg-mediawiki-devel/attachments/20081103/d61a7683/attachment.pgp
More information about the Pkg-mediawiki-devel
mailing list