Secunia Security Advisory – Gentoo has issued an update for bugzilla. This fixes multiple vulnerabilities, which can be exploited by malicious users to disclosure sensitive information, bypass certain security restrictions, conduct script insertion attacks, and SQL injection attacks, and by malicious people to disclosure potentially sensitive information, conduct cross-site request forgery attacks, and SQL injection attacks.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/90313/sa40038.txt
Source: https://packetstormsecurity.com/files/90313/Secunia-Security-Advisory-40038.html