Openwall Project   /home  Owl  JtR  Pro  crypt  pam_passwdqc  tcb  phpass  scanlogd  popa3d  msulogin  /  Linux  BIND  /  advisories  presentations  /  services  donations  /  wordlists  passwords  /  NEWS  community  lists  Wiki  CVSweb  mirrors  signatures
bringing security into open environments
 
Password Recovery Resources on the Net
[<prev] [next>] [<thread-prev] [thread-next>] [month] [year] [list] 
Date: Wed, 21 May 2008 02:49:44 +0000 (UTC)
From: security curmudgeon <jericho@...rition.org>
To: oss-security@...ts.openwall.com
Subject: Re: CVE request: mtr


: On Wednesday, 21. May 2008, Jonathan Smith wrote:
: > http://seclists.org/fulldisclosure/2008/May/0488.html has all the
: > details.
: >
: > https://issues.rpath.com/browse/RPL-2558 is the rpath issue.
: 
: Secunia suggests [1] that 0.73 contains a fix. Did you find any 
: indication to that? The advisory mentions 0.72 as vulnerable, but it is 
: also dated February 28. The last mtr was released on April 7, but it 
: seems to me all changes are unrelated.

I did a quick once over on the site and did not see anything in the news, 
bug system or changelog (dated 2004 i think) in the archive.

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ