[SECURITY] hosts can erase access entries set by owners
Status: Beta
Brought to you by:
ziggythehamster
Minor issue, yes, but still an issue. Hosts can remove
access entries added by owners. This is a breach of
channel security, and actually a quite minor one. If it
becomes an issue before 0.3.7, I'll release a patch.
Logged In: YES
user_id=919946
- Need function to safely clear an access entry type,
returning false if some entries couldn't be deleted, true
otherwise.
Logged In: YES
user_id=919946
The reported bug has been fixed in the sourcecode and will be
avaliable in the CVS within the next 24 hours.