'Re: [oss-security] Dovecot releases'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] Dovecot releases
From:       Henri Salo <henri () nerv ! fi>
Date:       2011-05-19 18:52:32
Message-ID: 20110519185232.GM32435 () foo ! fgeek ! fi
[Download RAW message or body]

On Thu, May 19, 2011 at 02:43:51PM -0400, Josh Bressers wrote:
> 
> 
> ----- Original Message -----
> > Henri Salo wrote:
> > > Should these two get CVE-identifier(s)?
> > > 
> > > http://dovecot.org/pipermail/dovecot/2011-May/059085.html
> > > http://dovecot.org/pipermail/dovecot/2011-May/059086.html
> > 
> > http://hg.dovecot.org/dovecot-1.1/rev/3698dfe0f21c
> > 
> 
> As best as I can tell, just the header NULL issue deserves a CVE id.
> CVE-2011-1929
> 
> Thanks.
> 
> -- 
> JB

Thank you for your response. I wonder why Dovecot-project does not request these by themselves. \
I notified the mailing-list about new CVE-identifier.

Best regards,
Henri Salo


[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic