oss-security - Re: CVE request: unauthorized SSL certificates by Türktrust discovered

Follow @Openwall on Twitter for new release announcements and other news

[<prev] [next>] [<thread-prev] [day] [month] [year] [list]

Message-ID: <20130215163414.627346c3@redhat.com>
Date: Fri, 15 Feb 2013 16:34:14 +0100
From: Tomas Hoger <thoger@...hat.com>
To: oss-security@...ts.openwall.com
Cc: ago@...too.org
Subject: Re: CVE request: unauthorized SSL certificates by
 Türktrust discovered

On Fri, 15 Feb 2013 12:45:16 +0100 Agostino Sarubbo wrote:

> Title:        unauthorized SSL certificates by Türktrust discovered
> Risk Rating:  Medium
> Platforms:    All
> Modules:      QtNetwork
> Versions:     All
> Author:       Peter Hartmann
> Date:         7th January 2013
> 
> More info and code commit at:
> http://lists.qt-project.org/pipermail/announce/2013-January/000021.html
> 
> I don't see a cve for it, please assign one.

This is not expected to have CVE, see:

https://bugzilla.mozilla.org/show_bug.cgi?id=825022#c67
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0743

-- 
Tomas Hoger / Red Hat Security Response Team

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.