From e6d43e7b21aabac6aa8f895e3103a131ad6d4a91 Mon Sep 17 00:00:00 2001 From: brix Date: Wed, 15 Jun 2011 12:43:36 +0000 Subject: - Document CVE-2011-1408 in www/ikiwiki --- security/vuxml/vuln.xml | 29 +++++++++++++++++++++++++++++ 1 file changed, 29 insertions(+) (limited to 'security/vuxml') diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index cb0dee9a3c9a..5f2832b4d7a1 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -34,6 +34,35 @@ Note: Please add new entries to the beginning of this file. --> + + ikiwiki -- tty hijacking via ikiwiki-mass-rebuild + + + ikiwiki + 3.20110608 + + + + +

The IkiWiki development team reports:

+
Ludwig Nussel discovered a way for users to hijack root's + tty when ikiwiki-mass-rebuild was run. Additionally, there + was some potential for information disclosure via + symlinks.
+

+ + + + CVE-2011-1408 + http://ikiwiki.info/security/#index40h2 + + + 2011-06-08 + 2011-06-15 + + + linux-flashplugin -- cross-site scripting vulnerability -- cgit