Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <1275513606.24713.10.camel@new-desktop>
Date: Wed, 02 Jun 2010 23:20:06 +0200
From: Nicolas Grégoire <nicolas.gregoire@...rri.fr>
To: oss-security@...ts.openwall.com
Subject: Re: SFCB vulnerabilities


> Unfortunally they seem to re-introduce these bugs in other sblims
> like sblim-gather. Did you look at that too?

No, I only audited different CIM brokers for remote pre-auth bugs.

By the way, these audits showed that vendors add many patches to the
upstream code, sometimes removing vulnerabilities (like VMware in this
case) and sometimes adding ones ;-)

Regards,
Nicolas Grégoire / Agarri



Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.