Date: Sun, 29 Jan 2017 17:34:44 +0100 From: Martin Pitt <mpitt@...ian.org> To: oss-security@...ts.openwall.com Cc: Kovid Goyal <kovid@...idgoyal.net>, Antoine Beaupré <anarcat@...ian.org> Subject: Requesting CVE for calibre file disclosure Hello all, Calibre 2.75 fixed what looks like a local data disclosure vulnerability: https://github.com/kovidgoyal/calibre/commit/3a89718664cb8c @Kovid: Would you mind making the original Launchpad bug https://launchpad.net/bugs/1651728 public? @osssec: Can you please assign a CVE on this one? Thanks to Antoine for pointing this out, this deserves an update in stable distro releases. Martin Download attachment "signature.asc" of type "application/pgp-signature" (820 bytes)
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ