Bug number - 423441

Part of package: blosxom.

Bug description:

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
Debian Bug report logs -  #423441 blosxom: param("-f") for exec introduces security hole
Package:      blosxom; Maintainer for blosxom is Rhonda D'Vine <rhonda@debian.org>; Source for blosxom is src:blosxom (PTS, buildd, popcon).
Reported by: Neale Pickett <neale@woozle.org>
Date: Fri, 11 May 2007 21:09:01 UTC
Severity: grave
Tags: security
Found in version blosxom/2.0-14
Fixed in versions blosxom/2.0-15, blosxom/2.0-14+etch1
Done: Gerfried Fuchs <rhonda@debian.at>
Bug is archived. No further changes may be made.

All x-patch and x-diff attachments.

Patch	Author	Date
blosxom-minusf.patch	Nick Leverton <nick@leverton.org>	Tue, 12 Jun 2007 14:55:22 +0100

Original bug report here.