Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-ID: <1261048374.1123451279733716623.JavaMail.root@zmail01.collab.prod.int.phx2.redhat.com>
Date: Wed, 21 Jul 2010 13:35:16 -0400 (EDT)
From: Josh Bressers <bressers@...hat.com>
To: oss-security@...ts.openwall.com
Cc: rubidium@...nttd.org, Matthijs Kooijman <matthijs@...in.nl>
Subject: Re: CVE request for OpenTTD

Please use CVE-2010-2534

Thanks.

-- 
    JB


----- "Matthijs Kooijman" <matthijs@...in.nl> wrote:

> Hi folks,
> 
> the OpenTTD developers have indentified a security vulnerability in
> the
> OpenTTD program. Would you be so kind as to allocate a CVE id for
> this
> issue?
> 
> The issue concerns a denial of service vulnerability, in the form of
> a
> hard to trigger infinite loop. The issue is reported at
> http://bugs.openttd.org/task/3909
> 
> The first vulnerable version is 1.0.1, the upcoming 1.0.3 release
> will
> have the issue fixed.
> 
> Once a CVE id is allocated, the issue will be documented at
> http://security.openttd.org/en/CVE-2010-xxxx
> 
> Thanks,
> 
> Matthijs
> 
> (Please CC me, I'm not subscribed)

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.