Home page logo

oss-sec logo oss-sec mailing list archives

CVE Request: pywbem certificate TOCTOU
From: Sebastian Krahmer <krahmer () suse de>
Date: Wed, 18 Dec 2013 16:24:23 +0100


There is an issue with pywbem checking x509 certifcates.
Our BZ is


It contains the upstream URLs. There also seems to be a ticket
open for it at RH (1026891) but I cannot access that, so I dont know
whether they already assigned a CVE for it? At least in upstream commits
there is no CVE mentioned.

If there is not already one, can you assign one?



~ perl self.pl
~ $_='print"\$_=\47$_\47;eval"';eval
~ krahmer () suse de - SuSE Security Team

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]