Date: Fri, 20 Jun 2014 08:02:32 +0200 From: Salvatore Bonaccorso <carnil@...ian.org> To: oss-security@...ts.openwall.com Cc: 752092@...s.debian.org Subject: Re: CVE request: softhsm, softhsm-keyconv tool creates world-readable files Hello Murray, (keeping the Cc on the bureport to answer this also there): On Fri, Jun 20, 2014 at 03:46:30PM +1000, Murray McAllister wrote: [...] > The Debian bug also notes a similar issue was fixed in ldns - I've > asked for more details about that in the bug). This should be CVE-2014-3209 (dns-keygen generates keys with world readable permissions ). Regards, Salvatore
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ