Date: Mon, 16 Jun 2014 23:52:44 +0200 From: Erik Ekman <yarrick@...o.se> To: oss-security@...ts.openwall.com Cc: Oscar Reparaz <oscar@...araz.net> Subject: CVE Request: iodine: authentication bypass by client Hi oss-security, iodine 0.7.0 has just been released, which fixes an authentication bypass issue discovered by Oscar Reparaz. The fix is here: https://github.com/yarrick/iodine/commit/b715be5cf3978fbe589b03b09c9398d0d791f850 and the new release is available at the homepage: http://code.kryo.se/iodine/ Please assign a CVE id for this issue. /Erik Ekman iodine main developer
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ