Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Sun, 22 Nov 2015 15:51:04 -0500
From: Fried Wil <wilfried.pascault@...il.com>
To: oss-security@...ts.openwall.com
Cc: CVE Assignments MITRE <cve-assign@...re.org>, DAVIDKA@...ibm.com, Roee Hay <ROEEH@...ibm.com>, 
	"private@...dova.apache.org" <private@...dova.apache.org>, dev <dev@...dova.apache.org>, 
	"security@...che.org" <security@...che.org>, bugtraq@...urityfocus.com
Subject: Re: CVE-2015-5257 - Weak Randomization of BridgeSecret
 for Apache Cordova Android

Hi,
yes, agree with Savatore.

I sent an email to MITRE yesterday about this.

Regards,

On Sun, Nov 22, 2015 at 12:50 PM, Salvatore Bonaccorso
<carnil@...ian.org> wrote:
> Hi,
>
> Adding MITRE team to recipients.
>
> On Fri, Nov 20, 2015 at 11:39:56AM -0800, Joe Bowser wrote:
>> ===================================================================
>> CVE-2015-5257: Weak Randomization of BridgeSecret for Apache Cordova Android
>
> Is there a typo here? CVE-2015-5257 was already assigned for an issue
> in drivers/usb/serial/whiteheat.c in the Linux kernel. see
> https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5257
>
> Regards,
> Salvatore



-- 
Wilfried Pascault
wilfried.pascault@...il.com

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ