Openwall Project   /home  Owl  JtR  Pro  crypt  pam_passwdqc  tcb  phpass  scanlogd  popa3d  msulogin  /  Linux  BIND  /  advisories  presentations  /  services  donations  /  wordlists  passwords  /  NEWS  community  lists  Wiki  CVSweb  mirrors  signatures
bringing security into open environments
 
Password Recovery Resources on the Net
[<prev] [next>] [thread-next>] [month] [year] [list] 
Date: Fri, 15 May 2009 03:29:03 +0300
From: Henri Salo <henri@...v.fi>
To: coley@...us.mitre.org
Cc: oss-security@...ts.openwall.com
Subject: CVE Request for cacti

I would like to obtain CVE identifier for security bug[1] in cacti[2].
I beleive this version of cacti is still used in some servers[3][4].

1: http://bugs.cacti.net/view.php?id=1245
2: http://cacti.net/
3: http://packages.debian.org/oldstable/cacti
4:
http://qa.debian.org/popcon-graph.php?packages=cacti&show_installed=on&from_date=2007-04-08&to_date=2009-02-14&hlght_date=&date_fmt=%25Y-%25m&beenhere=1

Dates 2007-04-08 and 2009-02-14 are from
http://www.debian.org/News/2007/20070408 and
http://www.debian.org/News/2009/20090214

How do I proceed with this issue to get a valid CVE identifier?

---
Henri Salo

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ