Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Mon, 26 Nov 2012 16:06:35 +0100
From: Moritz Muehlenhoff <>
Subject: CVE request: Curl insecure usage

during the triage of the SSL client bugs spotted by the paper
Debian developer Alessandro Ghedini discovered two more
applications using Curl in an insecure manner:

1. opendnssec (in the eppclient tool)

2. PHPcas (used by Moodle e.g.):

Please assign CVE IDs for these.


Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ