Date: Tue, 10 Dec 2013 15:00:59 +0100 From: Axel Beckert <abe@...ian.org> To: Andy Lester <andy@...dance.com> Cc: oss-security@...ts.openwall.com, Debian Security Team <team@...urity.debian.org>, 731848@...s.debian.org Subject: Re: CVE request for remote code execution in ack Hi Andy, Andy Lester wrote: > On Dec 10, 2013, at 7:46 AM, Axel Beckert <abe@...ian.org> wrote: > > as discussed with Salvatore Bonaccorso of the Debian Security Team > > (team cc'ed), I'm herewith requesting a CVE ID for the following > > security issue in ack (http://beyondgrep.com/, also known as ack-grep > > in multiple distributions; upstream developer cc'ed): > > Is there anything you need me to do? It would be nice if you could add the CVE-ID to the Changes file of ack retroactively as soon as it's known so that it's part of the Changes file in further ack releases. Regards, Axel -- ,''`. | Axel Beckert <abe@...ian.org>, http://people.debian.org/~abe/ : :' : | Debian Developer, ftp.ch.debian.org Admin `. `' | 1024D: F067 EA27 26B9 C3FC 1486 202E C09E 1D89 9593 0EDE `- | 4096R: 2517 B724 C5F6 CA99 5329 6E61 2FF9 CD59 6126 16B5
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.