'Re: [oss-security] CVE request for OpenTTD'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] CVE request for OpenTTD
From:       Josh Bressers <bressers () redhat ! com>
Date:       2010-07-21 17:35:16
Message-ID: 1261048374.1123451279733716623.JavaMail.root () zmail01 ! collab ! prod ! int ! phx2 ! redhat ! com
[Download RAW message or body]

Please use CVE-2010-2534

Thanks.

-- 
    JB


----- "Matthijs Kooijman" <matthijs@stdin.nl> wrote:

> Hi folks,
> 
> the OpenTTD developers have indentified a security vulnerability in
> the
> OpenTTD program. Would you be so kind as to allocate a CVE id for
> this
> issue?
> 
> The issue concerns a denial of service vulnerability, in the form of
> a
> hard to trigger infinite loop. The issue is reported at
> http://bugs.openttd.org/task/3909
> 
> The first vulnerable version is 1.0.1, the upcoming 1.0.3 release
> will
> have the issue fixed.
> 
> Once a CVE id is allocated, the issue will be documented at
> http://security.openttd.org/en/CVE-2010-xxxx
> 
> Thanks,
> 
> Matthijs
> 
> (Please CC me, I'm not subscribed)
[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic