[Bug 544245] New: CVE-2009-3585 rt3: session hijack

bugzilla at redhat.com bugzilla at redhat.com
Fri Dec 4 11:19:15 UTC 2009 

Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug.

Summary: CVE-2009-3585 rt3: session hijack

https://bugzilla.redhat.com/show_bug.cgi?id=544245

           Summary: CVE-2009-3585 rt3: session hijack
           Product: Fedora EPEL
           Version: el5
          Platform: All
               URL: http://fedoraproject.org/wiki/Security/TrackingBugs
        OS/Version: Linux
            Status: NEW
          Keywords: Security
          Severity: low
          Priority: low
         Component: rt3
        AssignedTo: xavier at bachelot.org
        ReportedBy: rc040203 at freenet.de
         QAContact: extras-qa at fedoraproject.org
                CC: xavier at bachelot.org, rc040203 at freenet.de,
                    fedora-perl-devel-list at redhat.com, mmahut at redhat.com,
                    vdanen at redhat.com
        Depends on: 543977
    Classification: Fedora
          Clone Of: 543977


Clone bug for el5. I'll take care about the FC10-rawhide versions, but will not
touch RHEL5.

+++ This bug was initially created as a clone of Bug #543977 +++

This is an automatically created tracking bug! It was created to ensure that
one or more security vulnerabilities are fixed in affected Fedora versions.

For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in "Blocks" field.

bug #543962:
CVE-2009-3585 rt3: session hijack

When creating a Bodhi update request, please include the bug IDs of the
respective parent bugs filed against the "Security Response" product. Please
mention CVE ids in the RPM changelog when available.

Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=543962

Please note: this issue affects multiple supported versions of Fedora.  Only
one tracking bug has been filed; please only close it when all affected
versions are fixed.

For more information see: http://fedoraproject.org/wiki/Security/TrackingBugs

-- 
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.

More information about the perl-devel mailing list