Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Thu, 5 Jul 2012 21:00:24 +0200
From: Moritz Muehlenhoff <jmm@...ian.org>
To: oss-security@...ts.openwall.com
Subject: Three CVE requests: at-spi2-atk, as31, naxsi

Hi,
please assign CVE IDs for the following issues:

1. Insecure tempfile handling in the Gnome accessibiliy component at-spi2-atk
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=678026
https://bugzilla.gnome.org/show_bug.cgi?id=678348

2. Insecure tempfile handling in the as31 assembler
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=655496
Homepage: http://wiki.erazor-zone.de/doku.php?id=wiki:projects:linux:as31

3. File disclosure in Naxsi web application firewall module for Nginx (also 
shipped in the Debian nginx package):
http://code.google.com/p/naxsi/
http://code.google.com/p/naxsi/source/detail?r=307

Cheers,
        Moritz

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ