Date: Tue, 16 Nov 2010 12:56:48 -0500 (EST) From: Josh Bressers <bressers@...hat.com> To: oss-security@...ts.openwall.com Cc: coley <coley@...re.org> Subject: Re: CVE Request: libsdp ----- "Huzaifa Sidhpurwala" <huzaifas@...hat.com> wrote: > > Leif Nixon reported that libsdp is vulnerable to insecure log file > handling. This is fixed by the latest libsdp version available at: > > http://www.openfabrics.org/downloads/libsdp/libsdp-1.1.105-0.4.g1b9b996.tar.gz > > More details are available in Red Hat bugzilla: > https://bugzilla.redhat.com/show_bug.cgi?id=647941 > > Can a CVE id be please assigned to this flaw? > Please use CVE-2010-4173 Thanks. -- JB
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ