Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [day] [month] [year] [list]
Date: Fri, 03 Jul 2015 14:15:46 +0200
From: Hector Marco-Gisbert <>
To: Assign a CVE Identifier <>
Subject: Waiting Mitre response: AMD Bulldozer, Linux ASLR mmap and Offset2lib

Hello Mitre,

We are still waiting a response about the following security issues:

    Title    : AMD Bulldozer Linux ASLR weakness: Reducing entropy by 87.5%.
    Date     : March 2015
    Advisory :
    Patch    : 

2) Title    : Linux ASLR mmap weakness: Reducing entropy by half
    Date     : March 2015
    Advisory :

3) Title    : Offset2lib: bypassing full ASLR on 64bit Linux
    Date     : November 2014
    Advisory :
    Path     :
    Note     : We are not sure whether it is a CVE or CWE.

Could you please assign a cve number or say something about them ?

Thank you,

Hector Marco-Gisbert @
Cyber Security Researcher @
Universitat Politècnica de València (Spain)

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ