Date: Tue, 16 Nov 2010 12:56:48 -0500 (EST) From: Josh Bressers <bressers@...hat.com> To: oss-security@...ts.openwall.com Cc: coley <coley@...re.org> Subject: Re: CVE Request: libsdp ----- "Huzaifa Sidhpurwala" <huzaifas@...hat.com> wrote: > > Leif Nixon reported that libsdp is vulnerable to insecure log file > handling. This is fixed by the latest libsdp version available at: > > http://www.openfabrics.org/downloads/libsdp/libsdp-1.1.105-0.4.g1b9b996.tar.gz > > More details are available in Red Hat bugzilla: > https://bugzilla.redhat.com/show_bug.cgi?id=647941 > > Can a CVE id be please assigned to this flaw? > Please use CVE-2010-4173 Thanks. -- JB
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.