Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Tue, 10 Dec 2013 15:00:59 +0100
From: Axel Beckert <>
To: Andy Lester <>
	Debian Security Team <>,
Subject: Re: CVE request for remote code execution in ack

Hi Andy,

Andy Lester wrote:
> On Dec 10, 2013, at 7:46 AM, Axel Beckert <> wrote:
> > as discussed with Salvatore Bonaccorso of the Debian Security Team
> > (team cc'ed), I'm herewith requesting a CVE ID for the following
> > security issue in ack (, also known as ack-grep
> > in multiple distributions; upstream developer cc'ed):
> Is there anything you need me to do?

It would be nice if you could add the CVE-ID to the Changes file of
ack retroactively as soon as it's known so that it's part of the
Changes file in further ack releases.

		Regards, Axel
 ,''`.  |  Axel Beckert <>,
: :' :  |  Debian Developer, Admin
`. `'   |  1024D: F067 EA27 26B9 C3FC 1486  202E C09E 1D89 9593 0EDE
  `-    |  4096R: 2517 B724 C5F6 CA99 5329  6E61 2FF9 CD59 6126 16B5

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.