Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Thu, 10 Jan 2013 16:56:37 -0800
From: Reed Loden <reed@...dloden.com>
To: <oss-security@...ts.openwall.com>
Subject: CVE request for multi_xml ruby gem (has same problem as
 CVE-2013-0156)

Apparently, the multi_xml ruby gem has the same issue as CVE-2013-0156.

Can a new CVE be assigned to track it specifically as well, or would
policy dictate that this issue be considered part of the original CVE?

https://gist.github.com/d7f6d9f4925f413621aa
https://github.com/sferik/multi_xml/pull/34
https://news.ycombinator.com/item?id=5040457

~reed

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ