Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Mon, 21 Sep 2015 14:58:35 +0200
From: Martin Prpic <mprpic@...hat.com>
To: "oss security list" <oss-security@...ts.openwall.com>
Subject: CVE request: zarafa-autorespond suffers from a potential local privilege escalation

Hi,

The following bug was reported to Red Hat:

https://bugzilla.redhat.com/show_bug.cgi?id=1263006

The issue is noted as "zarafa-autorespond suffers from a potential local
privilege escalation" in the zarafa changelog:

https://download.zarafa.com/community/beta/7.2/changelog-7.2.txt

Patch:

https://bugzilla.redhat.com/attachment.cgi?id=1073440&action=diff

Can a CVE be assigned for this issue?

Thanks!

-- 
Martin Prpič / Red Hat Product Security

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ