Home page logo
/

oss-sec logo oss-sec mailing list archives

Re: CVE request: Curl insecure usage
From: Moritz Muehlenhoff <jmm () debian org>
Date: Wed, 26 Dec 2012 12:38:19 +0100

On Thu, Nov 29, 2012 at 10:44:36PM +0100, Moritz Mühlenhoff wrote:
Also can someone collate and post a list of all the other apps using
curl insecurely and need CVE's with appropriate links to the
upstreams/etc? Thanks.

There are some, which are potentially affected, but where discussion
with upstream is still pending.

Here are two more, please assign CVE IDs (both discovered by
Alessandro Ghedini):

1. Falcon programming language:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696681

2. NuSOAP PHP package:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696707

Cheers,
        Moritz


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]