Closed Bug 463247 Opened 16 years ago Closed 16 years ago

Security Advisory for Bugzilla 3.2rc2, 3.0.6, 2.22.6, and 2.20.7

Categories

(Bugzilla :: Bugzilla-General, defect)

Product:
Bugzilla
Component:
Bugzilla-General
Version:
2.20.6
Type:
defect
Priority:
Not set
Severity:
blocker

Tracking

()

Status:
RESOLVED FIXED
Milestone:
Bugzilla 2.20

People

(Reporter: LpSolit, Assigned: LpSolit)

References

Details

Attachments

(1 file, 1 obsolete file)

sec adv, v2
(deleted), text/plain
mkanat
: review+
Details
We need a sec adv for bug 449931.
Attached file sec adv, v1 (obsolete) (deleted) —
Attachment #346589 - Flags: review?(mkanat)
Attachment #346589 - Flags: review?(mkanat) → review-
Comment on attachment 346589 [details] sec adv, v1 >Summary >======= > >Bugzilla is a Web-based bug-tracking system, used by a large number of >software projects. > >This advisory covers a security issue that has recently been fixed >in the Bugzilla code: "a minor security issue" > users can bypass access checks and take control on quips > to display. "and approve or disapprove quips themselves." Otherwise looks fine.
Attached file sec adv, v2 (deleted) —
Attachment #346589 - Attachment is obsolete: true
Attachment #346781 - Flags: review?(mkanat)
Attachment #346781 - Flags: review?(mkanat) → review+
Advisory sent.
Group: bugzilla-security
Status: ASSIGNED → RESOLVED
Closed: 16 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: