[Bug 877015] perl-CGI: Newline injection due to improper CRLF escaping in Set-Cookie and P3P headers

bugzilla at redhat.com bugzilla at redhat.com
Thu Nov 15 15:06:31 UTC 2012


Product: Security Response
https://bugzilla.redhat.com/show_bug.cgi?id=877015

Jan Lieskovsky <jlieskov at redhat.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         Whiteboard|impact=moderate,public=2012 |impact=moderate,public=2012
                   |1112,reported=20121115,sour |1112,reported=20121115,sour
                   |ce=internet,cvss2=2.6/AV:N/ |ce=internet,cvss2=2.6/AV:N/
                   |AC:H/Au:N/C:N/I:P/A:N,fedor |AC:H/Au:N/C:N/I:P/A:N,rhel-
                   |a-all/perl-CGI=affected     |5/perl=affected,rhel-6/perl
                   |                            |=affected,fedora-all/perl-C
                   |                            |GI=affected

-- 
You are receiving this mail because:
You are on the CC list for the bug.



More information about the perl-devel mailing list