[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] CVE id request: comix
From:       Nico Golde <oss-security+ml () ngolde ! de>
Date:       2008-03-31 22:18:59
Message-ID: 20080331221859.GB14070 () ngolde ! de
[Download RAW message or body]


Hi Steven,
* Steven M. Christey <coley@linus.mitre.org> [2008-04-01 00:09]:
> On Mon, 31 Mar 2008, Nico Golde wrote:
> 
> > http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=462840
> >
> > I confirmed this using comix\"\;echo\ owned\>bla\;ls\ \"
> > as a simple reroducer.
> 
> Use CVE-2008-1568

Thanks

> What about the comicthumb in Message #10 - if that's part of comix, I'd
> MERGE with CVE-2008-1568.

Yes that seems to be a script part of the comix package.
Kind regards
Nico
-- 
Nico Golde - http://www.ngolde.de - nion@jabber.ccc.de - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.

[Attachment #3 (application/pgp-signature)]

[prev in list] [next in list] [prev in thread] [next in thread]