Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Mon, 25 Apr 2011 15:40:53 -0400 (EDT)
From: Josh Bressers <bressers@...hat.com>
To: oss-security@...ts.openwall.com
Cc: coley <coley@...re.org>
Subject: Re: CVE request: CVE-2011-1089-like flaw in
 mount.nfs

----- Original Message -----
> A similar issue to CVE-2011-1089 was found in mount.nfs because it
> uses
> it's own addmntent() implementation to update /etc/mtab
> (nfs_addmntend()). It also fails to anticipate resource limits and
> could trigger corruption of the mtab file.
> 
> For more details see:
> 
> https://bugzilla.redhat.com/show_bug.cgi?id=697975
> 
> Could a CVE name be assigned to this issue please? Thanks.
> 

Please use CVE-2011-1749.

Thanks.

-- 
    JB

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.