Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-ID: <20110427202653.0a28aee7@orphan>
Date: Wed, 27 Apr 2011 20:26:53 +0200
From: Tomas Hoger <thoger@...hat.com>
To: oss-security@...ts.openwall.com
Cc: dan.j.rosenberg@...il.com, "Steven M. Christey" <coley@...us.mitre.org>,
        Ludwig Nussel <ludwig.nussel@...e.de>, Petr Baudis <pasky@...e.cz>
Subject: Re: Suid mount helpers fail to anticipate
 RLIMIT_FSIZE

On Wed, 27 Apr 2011 14:19:43 -0400 Dan Rosenberg wrote:

> > Steve, it seems CVE-2011-1676 should get marked as rejected or
> > disputed.
> 
> I currently only have CVE-2011-1089, which seems to be for glibc not
> indicating failure of addmntent() calls.  Were additional CVEs
> assigned to some of the individual issues?  If so, would you mind
> posting them here to avoid duplicate requests?

CVE-2011-1675 - CVE-2011-1681 based on your list here:
http://thread.gmane.org/gmane.comp.security.oss.general/4374/focus=4516

CVE-2011-1089 for similar nfs-utils:
http://thread.gmane.org/gmane.comp.security.oss.general/4954

-- 
Tomas Hoger / Red Hat Security Response Team

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.