Home page logo
/

oss-sec logo oss-sec mailing list archives

CVE Request: pywbem certificate TOCTOU
From: Sebastian Krahmer <krahmer () suse de>
Date: Wed, 18 Dec 2013 16:24:23 +0100

Hi

There is an issue with pywbem checking x509 certifcates.
Our BZ is

https://bugzilla.novell.com/show_bug.cgi?id=856108

It contains the upstream URLs. There also seems to be a ticket
open for it at RH (1026891) but I cannot access that, so I dont know
whether they already assigned a CVE for it? At least in upstream commits
there is no CVE mentioned.

If there is not already one, can you assign one?

thx,
Sebastian

-- 

~ perl self.pl
~ $_='print"\$_=\47$_\47;eval"';eval
~ krahmer () suse de - SuSE Security Team


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault