Home page logo
/

oss-sec logo oss-sec mailing list archives

Re: CVE request -- vCalendar plugin for Claws Mail: credentials exposed on interface
From: Vincent Danen <vdanen () redhat com>
Date: Wed, 28 Nov 2012 09:44:53 -0700

* [2012-11-15 13:36:13 +0100] Ricardo Mones wrote:

 This has been reported on our bugzilla:
 http://www.thewildbeast.co.uk/claws-mail/bugzilla/show_bug.cgi?id=2782

 There's still not fix available. Could a CVE id be allocated for this if
appropriate?

 thanks in advance,

P.S.: I'm not subscribed to the list.

I don't know if this ever got a CVE or not; if it did I don't see a
reference.

Also, according to this bug report it's fixed, but I can't find the
patch in your CVS tracker.  Can you provide a link to it?

And, if a CVE hasn't been assigned, perhaps Kurt or someone could assign
one?

--
Vincent Danen / Red Hat Security Response Team

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault