>
> I have requested CVE numbers via oss-sec (awaiting list moderation).
Looks like the CVE identifiers request did not made it to oss-security
yet.
To Gianluca: We will update this bug with CVE identifiers later, once
they are assigned to the issues. Could you please schedule Fedora MantisBT
updates with the patch below? (Fedora bug will follow shortly)
(In reply to comment #0)
Hi David,
thank you for such a complete report.
>
> I have requested CVE numbers via oss-sec (awaiting list moderation).
Looks like the CVE identifiers request did not made it to oss-security
yet.
To Gianluca: We will update this bug with CVE identifiers later, once
they are assigned to the issues. Could you please schedule Fedora MantisBT
updates with the patch below? (Fedora bug will follow shortly)
> git.mantisbt. org/?p= mantisbt. git;a=commitdif f_plain; h=2641fdc60d203 2ae1586338d6416 e1eadabd7590
> As Redhat is using MantisBT 1.1.x you will need to apply the following
> patch to resolve the issue in this older version of MantisBT:
> http://
Thanks && Regards, Jan.
--
Jan iankko Lieskovsky / Red Hat Security Response Team