Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [day] [month] [year] [list]
Date: Fri, 03 Jul 2015 14:15:46 +0200
From: Hector Marco-Gisbert <>
To: Assign a CVE Identifier <>
Subject: Waiting Mitre response: AMD Bulldozer, Linux ASLR mmap and Offset2lib

Hello Mitre,

We are still waiting a response about the following security issues:

    Title    : AMD Bulldozer Linux ASLR weakness: Reducing entropy by 87.5%.
    Date     : March 2015
    Advisory :
    Patch    : 

2) Title    : Linux ASLR mmap weakness: Reducing entropy by half
    Date     : March 2015
    Advisory :

3) Title    : Offset2lib: bypassing full ASLR on 64bit Linux
    Date     : November 2014
    Advisory :
    Path     :
    Note     : We are not sure whether it is a CVE or CWE.

Could you please assign a cve number or say something about them ?

Thank you,

Hector Marco-Gisbert @
Cyber Security Researcher @
Universitat Politècnica de València (Spain)

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.