|
Message-ID: <1041054839.13184469.1363958601700.JavaMail.root@redhat.com> Date: Fri, 22 Mar 2013 09:23:21 -0400 (EDT) From: Jan Lieskovsky <jlieskov@...hat.com> To: oss-security@...ts.openwall.com Cc: "Steven M. Christey" <coley@...us.mitre.org>, Drupal Security Team <security@...pal.org> Subject: CVE Request -- drupal7-views : SA-CONTRIB-2013-035 - Views - Cross Site Scripting (XSS) Hello Kurt, Steve, Drupal Security Team, vendors, Drupal upstream has released: [1] http://drupal.org/node/1948358 and updated version of the Views module (Views 7.x-3.6): [2] http://drupal.org/node/1948354 correcting one cross-site scripting (XSS) flaw. AFAICT from [1], there doesn't seem to be a CVE identifier for this issue yet. Could you allocate one? Thank you && Regards, Jan. -- Jan iankko Lieskovsky / Red Hat Security Response Team
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.