-
Committer:
Bazaar Package Importer
-
Author(s):
Andrew Mitchell
-
Date:
2005-10-22 12:31:08 UTC
-
Revision ID:
james.westby@ubuntu.com-20051022123108-rpmeq9hk2tfn7d26
Tags: 4:2.6.4-pl1-1ubuntu1.1
* SECURITY UPDATE: fix local file inclusion.
* libraries/grab_globals.lib.php: the $__redirect parameter was not
correctly validated, opening the door to a local file inclusion attack.
* Fix backported from 4:2.6.4-pl2-1
* References:
PMASA-2005-4
http://bugs.debian.org/333433