Date: Fri, 3 Sep 2010 15:08:10 -0700 From: Reed Loden <reed@...dloden.com> To: oss-security@...ts.openwall.com Cc: Julien Cristau <jcristau@...ian.org>, Jan Lieskovsky <jlieskov@...hat.com>, "Steven M. Christey" <coley@...us.mitre.org>, Richard Moore <rich@...tpoint.ltd.uk>, Simon Ward <simon@...tpoint.ltd.uk> Subject: Re: CVE Request 1, NSS 2, Qt: Doesn't handle wildcards in Common Name properly On Fri, 3 Sep 2010 23:46:16 +0200 Julien Cristau <jcristau@...ian.org> wrote: > On Fri, Sep 3, 2010 at 14:15:13 -0700, Reed Loden wrote: > > > Mozilla has assigned this CVE-2010-3170. We're tracking this as > > https://bugzilla.mozilla.org/show_bug.cgi?id=578697. > > > That bug is helpfully (or not) closed down. Yes, it's a security bug that isn't yet fixed in a released version of Firefox. As such, it is restricted until at some point after the release has been made and most users have upgraded. If you (as a @debian.org person) require access to the bug for the purpose of coordinating security releases, please contact Moritz Muehlenhoff, as he represents Debian on the Mozilla Security Group. Regards, ~reed Mozilla Security Group -- Reed Loden - <reed@...dloden.com>
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.