Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Sun, 29 Jan 2017 17:34:44 +0100
From: Martin Pitt <mpitt@...ian.org>
To: oss-security@...ts.openwall.com
Cc: Kovid Goyal <kovid@...idgoyal.net>,
	Antoine Beaupré <anarcat@...ian.org>
Subject: Requesting CVE for calibre file disclosure

Hello all,

Calibre 2.75 fixed what looks like a local data disclosure vulnerability:

  https://github.com/kovidgoyal/calibre/commit/3a89718664cb8c

@Kovid: Would you mind making the original Launchpad bug
https://launchpad.net/bugs/1651728 public?

@osssec: Can you please assign a CVE on this one?

Thanks to Antoine for pointing this out, this deserves an update in stable
distro releases.

Martin

Download attachment "signature.asc" of type "application/pgp-signature" (820 bytes)

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ