[Secure-testing-team] Bug#766545: CVE-2014-8763 CVE-2014-8764
Moritz Muehlenhoff
jmm at debian.org
Thu Oct 23 21:11:16 UTC 2014
Package: dokuwiki
Severity: important
Tags: security
Hi Tanguy,
CVE-2014-8763/CVE-2014-8764 have been assigned to this:
http://www.freelists.org/post/dokuwiki/Fwd-Dokuwiki-maybe-security-issue-Null-byte-poisoning-in-LDAP-authentication
There was also a CVE assignment for this issue, which is
already fixed in jessie:
https://github.com/splitbrain/dokuwiki/issues/765
I don't know dokuwiki, should we fix the media manager issue in wheezy?
See http://seclists.org/oss-sec/2014/q4/361 for details on
the CVE assignments.
Cheers,
Moritz
More information about the Secure-testing-team
mailing list