[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: [oss-security] CVE Request: pywbem certificate TOCTOU
From: Sebastian Krahmer <krahmer () suse ! de>
Date: 2013-12-18 15:24:23
Message-ID: 20131218152423.GA32050 () suse ! de
[Download RAW message or body]
Hi
There is an issue with pywbem checking x509 certifcates.
Our BZ is
https://bugzilla.novell.com/show_bug.cgi?id=856108
It contains the upstream URLs. There also seems to be a ticket
open for it at RH (1026891) but I cannot access that, so I dont know
whether they already assigned a CVE for it? At least in upstream commits
there is no CVE mentioned.
If there is not already one, can you assign one?
thx,
Sebastian
--
~ perl self.pl
~ $_='print"\$_=\47$_\47;eval"';eval
~ krahmer@suse.de - SuSE Security Team
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic