Date: Thu, 10 Jan 2013 16:56:37 -0800 From: Reed Loden <reed@...dloden.com> To: <oss-security@...ts.openwall.com> Subject: CVE request for multi_xml ruby gem (has same problem as CVE-2013-0156) Apparently, the multi_xml ruby gem has the same issue as CVE-2013-0156. Can a new CVE be assigned to track it specifically as well, or would policy dictate that this issue be considered part of the original CVE? https://gist.github.com/d7f6d9f4925f413621aa https://github.com/sferik/multi_xml/pull/34 https://news.ycombinator.com/item?id=5040457 ~reed
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ