Home page logo

oss-sec logo oss-sec mailing list archives

Re: CVE request: gri < 2.12.18 insecure temp file generation
From: "Steven M. Christey" <coley () rcf-smtp mitre org>
Date: Thu, 28 Jul 2011 11:18:40 -0400 (EDT)

Use CVE-2008-7291

- Steve

On Thu, 28 Jul 2011, Henri Salo wrote:

On Thu, Mar 03, 2011 at 03:38:32PM -0500, Josh Bressers wrote:
----- Original Message -----
Can I get CVE-identifier for this vulnerability? It's old one :)

Software gri is vulnerable to insecure temp file generation.

http://security-tracker.debian.org/tracker/TEMP-0000000-6359AF (please
note that this URL is not meant for public use as it is temporary)


Can MITRE take this. It needs a 2008 ID. It appears the commit for this fix
is here:



This is still unhandled. What is the status?

Best regards,
Henri Salo

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]