Home page logo

oss-sec logo oss-sec mailing list archives

CVE request: libsocialweb untrusted connection to flickr
From: Vincent Danen <vdanen () redhat com>
Date: Wed, 10 Oct 2012 15:20:59 -0600

A similar request was made last year for libsocialweb connecting to
Twitter, and it seems to be doing the same to Flickr now (probably has
been all this time).

Same situation: opens an HTTP (non-SSL) connection to Flickr when no
Flickr account is configured, and without the user's permission or

Could a CVE be assigned to this (or has one been assigned already)?

Request for the Twitter issue is here (for reference):


and the Red Hat bug:



Vincent Danen / Red Hat Security Response Team

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]