Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Tue, 28 Aug 2012 17:19:45 +0200
From: Marcus Meissner <meissner@...e.de>
To: OSS Security List <oss-security@...ts.openwall.com>
Subject: CVE Request: Hash collision issue in Mono/C# (similar to Microsoft
	.NET issue)

Hi,

The hash collision problem can also be found in the C# Mono implementation.

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3414
describes the issue for the Microsoft .NET runtime, but as the issue
is also in the Mono implementation it needs a different
CVE there.

References:
https://bugzilla.novell.com/show_bug.cgi?id=739119
https://github.com/mono/mono/commit/2ab1a051058fee5ea3aec2e071fba7000b693488
https://github.com/mono/mono/commit/c3e088bf2fc22d66d0f17b74676de366f661c3eb

Ciao, Marcus

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.