[Bug 658976] perl-CGI, perl-CGI-Simple: CVE-2010-2761 - hardcoded MIME boundary value for multipart content, CVE-2010-4410 - CRLF injection allowing HTTP response splitting

bugzilla at redhat.com bugzilla at redhat.com
Wed Oct 5 15:42:27 UTC 2011


Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug.


https://bugzilla.redhat.com/show_bug.cgi?id=658976

Tomas Hoger <thoger at redhat.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
  Status Whiteboard|impact=moderate,public=2010 |impact=moderate,public=2010
                   |1110,reported=20101201,sour |1110,reported=20101201,sour
                   |ce=redhat,cvss2=4.3/AV:N/AC |ce=redhat,cvss2=4.3/AV:N/AC
                   |:M/Au:N/C:N/I:P/A:N,fedora- |:M/Au:N/C:N/I:P/A:N,rhel-4/
                   |all/perl-CGI=affected,rhel- |perl=affected,rhel-5/perl=a
                   |6.1/perl=affected,rhel-5/pe |ffected,rhel-6.1/perl=affec
                   |rl=affected,rhel-4/perl=aff |ted,fedora-all/perl=affecte
                   |ected,fedora-all/perl=affec |d,fedora-all/perl-CGI=affec
                   |ted                         |ted
  Status Whiteboard|                            |fedora-all/perl-CGI-Simple=
                   |                            |affected

-- 
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.



More information about the perl-devel mailing list