Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <CANTwUcpgTHHuUzvNJGfWu3e4ido05BjFGjcM6QDkX0CVXBnd2g@mail.gmail.com>
Date: Sun, 22 Nov 2015 15:51:04 -0500
From: Fried Wil <wilfried.pascault@...il.com>
To: oss-security@...ts.openwall.com
Cc: CVE Assignments MITRE <cve-assign@...re.org>, DAVIDKA@...ibm.com, Roee Hay <ROEEH@...ibm.com>, 
	"private@...dova.apache.org" <private@...dova.apache.org>, dev <dev@...dova.apache.org>, 
	"security@...che.org" <security@...che.org>, bugtraq@...urityfocus.com
Subject: Re: CVE-2015-5257 - Weak Randomization of BridgeSecret
 for Apache Cordova Android

Hi,
yes, agree with Savatore.

I sent an email to MITRE yesterday about this.

Regards,

On Sun, Nov 22, 2015 at 12:50 PM, Salvatore Bonaccorso
<carnil@...ian.org> wrote:
> Hi,
>
> Adding MITRE team to recipients.
>
> On Fri, Nov 20, 2015 at 11:39:56AM -0800, Joe Bowser wrote:
>> ===================================================================
>> CVE-2015-5257: Weak Randomization of BridgeSecret for Apache Cordova Android
>
> Is there a typo here? CVE-2015-5257 was already assigned for an issue
> in drivers/usb/serial/whiteheat.c in the Linux kernel. see
> https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5257
>
> Regards,
> Salvatore



-- 
Wilfried Pascault
wilfried.pascault@...il.com

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.