|
Message-ID: <20090901111754.1e0970fc@neon>
Date: Tue, 1 Sep 2009 11:17:54 +0200
From: Alex Legler <a3li@...too.org>
To: oss-security@...ts.openwall.com
Cc: "Steven M. Christey" <coley@...us.mitre.org>
Subject: Re: CVE Request -- HTMLDOC
On Sat, 18 Jul 2009 13:09:09 +0200, Jan Lieskovsky
<jlieskov@...hat.com> wrote:
> [...]
> Could you please allocate a new CVE identifier for it?
>
Any updates on the CVE?
Upstream has acknowledged the issues in the meantime [1] (although the
two AFM related occurances nion found have a rather limited vector), a
fix will be in 1.9.
Thanks,
Alex
[1] http://www.htmldoc.org/str.php?L214
Download attachment "signature.asc" of type "application/pgp-signature" (199 bytes)
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.