[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] CVE Request - Multiple vulnerabilities in gdk-pixbuf
From:       Ariel Zelivansky <ariel.zelivans () gmail ! com>
Date:       2017-02-26 9:07:10
Message-ID: CAE-_4r1+bd+5utcah-_TEh3CiDWdj=030=COQjtg57GTx997pQ () mail ! gmail ! com
[Download RAW message or body]


To keep all the information in one place, the following CVE IDs had been
assigned by MITRE:
CVE-2017-6313 for [1]
CVE-2017-6314 for [2]
CVE-2017-6312 for [3]
CVE-2017-6311 for [4]



On Thu, Feb 23, 2017 at 10:26 AM, Ariel Zelivansky <ariel.zelivans@gmail.com
> wrote:

> Leo, thanks for the reference.
>
> I have requested a CVE via the web form and haven't heard from MITRE so
> far. Do they usually take time in responding?
> Or am I supposed to contact some other CNA?
>
> On Tue, Feb 21, 2017 at 10:42 PM, Leo Famulari <leo@famulari.name> wrote:
>
>> On Tue, Feb 21, 2017 at 05:20:11PM +0200, Ariel Zelivanski wrote:
>> > Hello,
>> >
>> > I just reported several vulnerabilities in gdk-pixbuf. I am adding the
>> > relevant details but you can also refer to the bug reports in the
>> links. If
>> > suitable please assign CVEs.
>>
>> As announced previously [0], MITRE is no longer assigning CVEs based on
>> messages to this list. Will you request the CVE IDs via the new web
>> form? [1]
>>
>> [0]
>> http://seclists.org/oss-sec/2017/q1/351
>>
>> [1]
>> https://cveform.mitre.org/
>>
>
>
>
> --
> *Ariel Zelivansky *— 0503990401 <050-399-0401>
>


[prev in list] [next in list] [prev in thread] [next in thread]