[Interchange-bugs] [Bug 167] Changed - do_view without security check
bugzilla-daemon@localhost.akopia.com
bugzilla-daemon@localhost.akopia.com
Fri, 13 Apr 2001 15:32:15 -0400
http://developer.akopia.com/bugs/show_bug.cgi?id=167
*** shadow/167 Thu Apr 12 22:02:35 2001
--- shadow/167.tmp.28278 Fri Apr 13 15:32:15 2001
***************
*** 1,12 ****
Bug#: 167
Product: Interchange
Version: 4.6.4
! Platform: PC
! OS/Version: Linux
! Status: RESOLVED
Resolution: FIXED
! Severity: normal
! Priority: P3
Component: UI
AssignedTo: __UNKNOWN__
ReportedBy: peasemj@bellatlantic.net
--- 1,12 ----
Bug#: 167
Product: Interchange
Version: 4.6.4
! Platform: All
! OS/Version: All
! Status: VERIFIED
Resolution: FIXED
! Severity: critical
! Priority: P1
Component: UI
AssignedTo: __UNKNOWN__
ReportedBy: peasemj@bellatlantic.net
***************
*** 33,35 ****
--- 33,40 ----
[/if-mm]
+
+ ------- Additional Comments From jon@akopia.com 2001-04-13 15:32 -------
+ It looks like your analysis is correct, Merlyn. Thanks for reporting this. We're
+ checking whether any other similar holes exist and once we have a general patch,
+ we'll release it and tell the user community.