Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Thu, 6 Mar 2014 12:51:00 -0500 (EST)
From: cve-assign@...re.org
To: fweimer@...hat.com
Cc: cve-assign@...re.org, oss-security@...ts.openwall.com
Subject: Re: CVE request: cloud-init DNS resolution fix

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

> https://bugs.launchpad.net/cloud-init/+bug/1040200
> http://bazaar.launchpad.net/~cloud-init-dev/cloud-init/trunk/revision/635
> 
> This could allow someone who has control over a suitable domain name to 
> obtain root rights on an affected system.

Use CVE-2012-6639.

- -- 
CVE assignment team, MITRE CVE Numbering Authority
M/S M300
202 Burlington Road, Bedford, MA 01730 USA
[ PGP key available through http://cve.mitre.org/cve/request_id.html ]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (SunOS)

iQEcBAEBAgAGBQJTGLStAAoJEKllVAevmvmspV0H/AwYqpWcjDY7UV+SvzqzrdwX
eWbpTWvNLgko1EU72yiDNkZGgvhmElScC7SROJr/cWQRqewMsWAulUgGApWrBq+o
EoNV5zX/OFNCXNXyHawDCKnrIawVPv1CI2Vr+YmmMFZ+K3QRjU54E0miR2dOjXMX
Bbh+ebx/Zrwj8+7rE7t6B7XAxVSF0VByyoOEJaFySgFkhRpo7oerTbhFfwX3E6wp
BbcesgthBDie7fPSDRxMrbPS98N+dfrrHDCicoRc4tEwZpSrCVCb5z/9Fdoa3vBK
irXTAN8c6H0QuS2V3pAHMFTypWn7VqC/3LDJ+G9ZXu1pTR1jL6DHtEz7sQXNnx8=
=IK/X
-----END PGP SIGNATURE-----

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ