[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: Re: [oss-security] CVE request: tss <= 0.8.1-3: arbitary file reading
From: "Steven M. Christey" <coley () linus ! mitre ! org>
Date: 2008-04-17 17:07:53
Message-ID: Pine.GSO.4.51.0804171307380.3756 () faron ! mitre ! org
[Download RAW message or body]
On Thu, 17 Apr 2008, Nico Golde wrote:
> Steve (the mitre one :) did you miss that?
yes, but I didn't miss this anyway :)
======================================================
Name: CVE-2008-1877
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1877
Reference: CONFIRM:http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=475747
tss 0.8.1 allows local users to read arbitrary files via the -a
parameter, which is processed while tss is running with privileges.
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic