'Re: [oss-security] CVE id request: python-virtualenv'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] CVE id request: python-virtualenv
From:       Kurt Seifried <kseifried () redhat ! com>
Date:       2011-12-19 17:35:50
Message-ID: 4EEF75F6.3090501 () redhat ! com
[Download RAW message or body]


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 12/19/2011 09:39 AM, Nico Golde wrote:
> Hi,
> * Kurt Seifried <kseifried@redhat.com> [2011-12-19 17:38]:
>>
>> On 12/19/2011 09:21 AM, Nico Golde wrote:
>>> An insecure /tmp file handling was found in python-virtualenv:
>>> https://bitbucket.org/ianb/virtualenv/changeset/8be37c509fe5o
>>>
>>> Can someone assign a CVE id for this?
>> Link is 404
>
> Sorry, c&p mistake:
> https://bitbucket.org/ianb/virtualenv/changeset/8be37c509fe5
>
> Cheers
> Nico
Please use CVE-2011-4617 for this issue.

- -- 

- -Kurt Seifried / Red Hat Security Response Team
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (GNU/Linux)
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=fJiE
-----END PGP SIGNATURE-----

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic