Home page logo
/

583 messages starting Oct 01 13 and ending Dec 31 13
Date index | Thread index | Author index

Tuesday, 01 October

CVE request: VLC Laurent Butti
Re: CVE request: VLC Kurt Seifried
Re: CVE request: Simple Machines Forum (SMF) <= 2.0.5 - multiple vulnerabilities Henri Salo
Re: CVE request: VLC Laurent Butti
[CVE request] systemd Huzaifa Sidhpurwala
Re: [CVE request] systemd Sebastian Krahmer
CVE request - VLC 2.0.0 to 2.0.8 Pedro Ribeiro
Re: CVE request: Simple Machines Forum (SMF) <= 2.0.5 - multiple vulnerabilities Kurt Seifried
Re: [CVE request] systemd Kurt Seifried

Wednesday, 02 October

Re: CVE request: Simple Machines Forum (SMF) <= 2.0.5 - multiple vulnerabilities security curmudgeon
Xen Security Advisory 65 (CVE-2013-4344) - qemu SCSI REPORT LUNS buffer overflow Xen . org security team
Re: Re: CVE request: Simple Machines Forum (SMF) <= 2.0.5 - multiple vulnerabilities Kurt Seifried
re: Xen Security Advisory 65 (CVE-2013-4344) - qemu SCSI REPORT LUNS buffer overflow security curmudgeon

Thursday, 03 October

Re: CVE request - VLC 2.0.0 to 2.0.8 Pedro Ribeiro

Friday, 04 October

Re: Re: CVE request - VLC 2.0.0 to 2.0.8 Kurt Seifried
A note on cookie based sessions Kurt Seifried
Re: A note on cookie based sessions Alexander E. Patrakov
Re: A note on cookie based sessions Donald Stufft
Re: A note on cookie based sessions Kurt Seifried
Re: A note on cookie based sessions Florian Weimer
Re: Re: CVE request - VLC 2.0.0 to 2.0.8 Hanno Böck
Re: A note on cookie based sessions cve-assign
Re: A note on cookie based sessions Andri Möll
Re: A note on cookie based sessions Igor Sverkos
Re: Re: CVE request - VLC 2.0.0 to 2.0.8 Kurt Seifried
Re: Re: CVE request - VLC 2.0.0 to 2.0.8 Pedro Ribeiro
Re: Re: CVE request - VLC 2.0.0 to 2.0.8 Kurt Seifried
CVE request for Drupal contributed module Forest Monsen

Saturday, 05 October

Re: CVE request for Drupal contributed module Kurt Seifried
CVE duplicates SA-CONTRIB-2013-075 Henri Salo

Monday, 07 October

Request for linux-distros () vs openwall org membership Salvatore Bonaccorso
Re: Request for linux-distros () vs openwall org membership Moritz Muehlenhoff

Tuesday, 08 October

CVE Request: remote command-injection flaw in HTTP::Body::Multipart versions 1.08 and later Murray McAllister
Re: CVE Request: remote command-injection flaw in HTTP::Body::Multipart versions 1.08 and later Kurt Seifried
CVE request: mahara 1.7.3 Raphael Geissert
Vulnerability in Webkit-GTK and PulseAudio volume handling Alexander E. Patrakov
Vulnerability Reported in my Ruby Gem richard schneeman
Fwd: X.Org security advisory: CVE-2013-4396: Use after free in Xserver handling of ImageText requests Alan Coopersmith

Wednesday, 09 October

Source of bad password hashing practices? MySQL manual... Rich Felker
Re: Source of bad password hashing practices? MySQL manual... gremlin
Re: Source of bad password hashing practices? MySQL manual... Alex Gaynor
Re: Source of bad password hashing practices? MySQL manual... Raphael Geissert
CVE Request - Slim 1.3.6 fixes a security issue mancha
Re: Vulnerability Reported in my Ruby Gem Kurt Seifried
Re: CVE Request - Slim 1.3.6 fixes a security issue Kurt Seifried
CVE Request - Quassel IRC SQL injection Bas Pape
Re: Source of bad password hashing practices? MySQL manual... Seth Arnold
RE: Source of bad password hashing practices? MySQL manual... Christey, Steven M.

Thursday, 10 October

Re: Source of bad password hashing practices? MySQL manual... Chris Palmer
Re: Source of bad password hashing practices? MySQL manual... Kurt Seifried
CVE-2013-4402 GnuPG infinite recursion in the compressed packet parser Solar Designer
Re: Source of bad password hashing practices? MySQL manual... Jeremy Stanley
Integer overflow in libtar (<= 1.2.19) Huzaifa Sidhpurwala
2 CVE's to be rejected Kurt Seifried
Re: Integer overflow in libtar (<= 1.2.19) Naufragium Est
Re: 2 CVE's to be rejected cve-assign
Re: Integer overflow in libtar (<= 1.2.19) Chris Palmer
Re: 2 CVE's to be rejected Kurt Seifried
Xen Security Advisory 67 (CVE-2013-4368) - Information leak through outs instruction emulation Xen . org security team
Xen Security Advisory 68 (CVE-2013-4369) - possible null dereference when parsing vif ratelimiting info Xen . org security team
Xen Security Advisory 70 (CVE-2013-4371) - use-after-free in libxl_list_cpupool under memory pressure Xen . org security team
Xen Security Advisory 69 (CVE-2013-4370) - misplaced free in ocaml xc_vcpu_getaffinity stub Xen . org security team
Xen Security Advisory 71 (CVE-2013-4375) - qemu disk backend (qdisk) resource leak Xen . org security team
CVE Request: dropbear sshd daemon 2013.59 release Marcus Meissner
Re: RESEND: CVE Request: pwgen Marcus Meissner
Re: CVE Request: dropbear sshd daemon 2013.59 release Matt Johnston
Re: CVE request: mahara 1.7.3 Raphael Geissert
Re: CVE Request: dropbear sshd daemon 2013.59 release Seth Arnold
Re: CVE Request: dropbear sshd daemon 2013.59 release Kurt Seifried
libtar: missing validation of file names Naufragium Est
Re: Vulnerability in Webkit-GTK and PulseAudio volume handling Colin Guthrie
Re: RESEND: CVE Request: pwgen Michael Samuel

Friday, 11 October

RE: 2 CVE's to be rejected Christey, Steven M.
Re: CVE request: mahara 1.7.3 Kurt Seifried
Re: CVE Request - Quassel IRC SQL injection Kurt Seifried
Re: CVE Request: dropbear sshd daemon 2013.59 release Kurt Seifried
Re: RE: 2 CVE's to be rejected Kurt Seifried
Re: Re: browser document.cookie DoS vulnerability Kurt Seifried
Re: [pulseaudio-discuss] Vulnerability in Webkit-GTK and PulseAudio volume handling Alexander E. Patrakov
Re: libtar: missing validation of file names Kurt Seifried
Re: [pulseaudio-discuss] Vulnerability in Webkit-GTK and PulseAudio volume handling Xabier Rodríguez Calvar
Re: Re: [pulseaudio-discuss] Vulnerability in Webkit-GTK and PulseAudio volume handling Alexander E. Patrakov
Re: CVE Request - Quassel IRC SQL injection Bas Pape
Re: Re: browser document.cookie DoS vulnerability aaron guzman
Re: Re: browser document.cookie DoS vulnerability Joel Weinberger
CVE request for saltstack minion identity usurpation Michael Scherer

Saturday, 12 October

Re: CVE Request: dropbear sshd daemon 2013.59 release Matt Johnston
Re: RESEND: CVE Request: pwgen Solar Designer
Re: Re: browser document.cookie DoS vulnerability Kurt Seifried
Re: CVE Request - Quassel IRC SQL injection Kurt Seifried

Monday, 14 October

CVE request: xss in XHProf Murray McAllister
Re: Re: browser document.cookie DoS vulnerability Murray McAllister
Re: CVE Request : poppler < 0.13.0 Marcus Meissner

Tuesday, 15 October

Re: CVE request: mahara 1.7.3 Raphael Geissert
Re: CVE request: pyxtrlock Leon Weber
Re: browser document.cookie DoS vulnerability cve-assign
Report - Stack-based buffer overflow and memory disclosure in camera driver (CVE-2013-4748 CVE-2013-4739) Jonathan Salwan
Re: CVE request: pyxtrlock Kurt Seifried
Re: CVE request: pyxtrlock Leon Weber
Re: CVE request: pyxtrlock Kurt Seifried
CVE request for a vulnerability in OpenStack Glance Thierry Carrez
Re: CVE request: pyxtrlock cve-assign

Wednesday, 16 October

WebTester 5.x Multiple Vulnerabilities X-Cisadane
Re: Request for linux-distros () vs openwall org membership Solar Designer
Re: Request for linux-distros () vs openwall org membership Salvatore Bonaccorso
Re: WebTester 5.x Multiple Vulnerabilities Kurt Seifried
Re: Re: browser document.cookie DoS vulnerability Kurt Seifried
Re: CVE Request : poppler < 0.13.0 Kurt Seifried
Re: Re: CVE request: mahara 1.7.3 Kurt Seifried
Re: Re: CVE request: pyxtrlock Kurt Seifried
Re: CVE request for a vulnerability in OpenStack Glance Kurt Seifried
Re: CVE request: xss in XHProf Kurt Seifried
Re: CVE Request: dropbear sshd daemon 2013.59 release Kurt Seifried
Re: CVE request for saltstack minion identity usurpation Kurt Seifried
Re: CVE request for saltstack minion identity usurpation Kurt Seifried
Re: CVE request for saltstack minion identity usurpation Kurt Seifried
Re: RESEND: CVE Request: pwgen Kurt Seifried
Re: browser document.cookie DoS vulnerability cve-assign
Possible DoS Vulnerability in Action Mailer (CVE-2013-4389) Aaron Patterson
CVE request: slapd segfaults on certain queries with rwm overlay enabled Vincent Danen

Thursday, 17 October

CVE request: echoping buffer overflow vulnerabilities Sergey Popov
Re: browser document.cookie DoS vulnerability cve-assign
CVE-2013-1445 python-crypto: PRNG not correctly reseeded in some situations Dwayne Litzenberger
Re: browser document.cookie DoS vulnerability Mozilla Security

Friday, 18 October

Re: RESEND: CVE Request: pwgen Michael Samuel
CVE-2013-4419: libguestfs insecure handling of socket file Vincent Danen
Re: CVE request for saltstack minion identity usurpation Kurt Seifried
Re: CVE duplicates SA-CONTRIB-2013-075 Forest Monsen
CVE request for Drupal contributed modules Forest Monsen
qpdf 5.0.1 has some security fixes Jay Berkenbilt

Saturday, 19 October

Re: CVE request for Drupal contributed modules Kurt Seifried
Re: CVE request: echoping buffer overflow vulnerabilities Kurt Seifried
Re: CVE request: slapd segfaults on certain queries with rwm overlay enabled Kurt Seifried
CVE Request: Node.js HTTP Pipelining DoS Jonathan Rudenberg

Sunday, 20 October

Re: CVE Request: Node.js HTTP Pipelining DoS Kurt Seifried

Monday, 21 October

CVE Request: gitolite world writable files for fresh installs of v3.5.3 Sitaram Chamarty
Re: CVE request: echoping buffer overflow vulnerabilities Moritz Muehlenhoff
Re: CVE duplicates SA-CONTRIB-2013-075 Henri Salo
CVE for Wordpress plugin Portable-phpmyadmin Anant Shrivastava
RE: Re: CVE duplicates SA-CONTRIB-2013-075 Christey, Steven M.
CVE request: cmsmadesimple before 1.11.8 / bad upstream behaviour vs. CVE assignment Hanno Böck
Re: [pulseaudio-discuss] Vulnerability in Webkit-GTK and PulseAudio volume handling Alexander E. Patrakov
Re: Re: CVE duplicates SA-CONTRIB-2013-075 Kurt Seifried
Re: CVE request: echoping buffer overflow vulnerabilities Kurt Seifried
Re: CVE for Wordpress plugin Portable-phpmyadmin Kurt Seifried
Re: CVE Request: gitolite world writable files for fresh installs of v3.5.3 Kurt Seifried
Re: CVE request: cmsmadesimple before 1.11.8 / bad upstream behaviour vs. CVE assignment Kurt Seifried
CVE Request: LDAP Account Manager XSS in login.php Salvatore Bonaccorso

Tuesday, 22 October

Re: CVE for Wordpress plugin Portable-phpmyadmin Anant Shrivastava
Re: CVE Request: LDAP Account Manager XSS in login.php Kurt Seifried
Re: CVE for Wordpress plugin Portable-phpmyadmin Kurt Seifried
[OSSA 2013-027] Glance image_download policy not enforced for cached images (CVE-2013-4428) Thierry Carrez
CVE Request: MantisBT before 1.2.16 XSS vulnerability Damien Regad
CVE request: WebKit-GTK + Puseaudio: unexpectedly high sound volume Alexander E. Patrakov
CVE Request: lightdm no longer confines guest profile with AppArmor Marc Deslauriers
CVE Request: Simple Machines Forum (SMF) Remote file inclusion vulnerability Kevin Pawloski
Re: CVE for Wordpress plugin Portable-phpmyadmin security curmudgeon
Recursive Interpolation Vulnerability in Cocaine rubygem (CVE-2013-4457) Jon Yurek
Re: RESEND: CVE Request: pwgen Solar Designer
CVE request: another glibc flaw, similar to CVE-2013-1914, but in AF_INET6 Vincent Danen
Re: Re: CVE duplicates SA-CONTRIB-2013-075 Forest Monsen
Re: RESEND: CVE Request: pwgen Michael Samuel

Wednesday, 23 October

Re: RESEND: CVE Request: pwgen Kurt Seifried
Re: Re: CVE for Wordpress plugin Portable-phpmyadmin Kurt Seifried
Re: CVE Request: lightdm no longer confines guest profile with AppArmor Kurt Seifried
Re: CVE request: another glibc flaw, similar to CVE-2013-1914, but in AF_INET6 Kurt Seifried
Re: CVE Request: lightdm no longer confines guest profile with AppArmor Marc Deslauriers
Re: CVE Request: Simple Machines Forum (SMF) Remote file inclusion vulnerability Kurt Seifried
Re: CVE Request: MantisBT before 1.2.16 XSS vulnerability Kurt Seifried
Re: CVE Request: lightdm no longer confines guest profile with AppArmor Kurt Seifried
Re: Re: CVE for Wordpress plugin Portable-phpmyadmin Anant Shrivastava
VICIDIAL 2.7 - SQL Injection, Command Injection Adam Caudill

Thursday, 24 October

Re: Re: CVE for Wordpress plugin Portable-phpmyadmin Kurt Seifried
CVE Request: gnutls/libdane buffer overflow Marcus Meissner
CVE Request: Simple Machines Forum (SMF) Remote file inclusion vulnerability Kevin Pawloski

Friday, 25 October

Re: VICIDIAL 2.7 - SQL Injection, Command Injection Kurt Seifried
Re: CVE Request: gnutls/libdane buffer overflow Kurt Seifried
Re: CVE Request: Simple Machines Forum (SMF) Remote file inclusion vulnerability Kurt Seifried
CVE request: Linux kernel: net: memory corruption with UDP_CORK and UFO P J P
Re: CVE request: Linux kernel: net: memory corruption with UDP_CORK and UFO Kurt Seifried
[Notification] CVE-2013-6047: ikiwiki-hosting: XSS in site creation interface Salvatore Bonaccorso

Saturday, 26 October

CVE request: 3 vulnerabilities in poppler and 1 in Xpdf Pedro Ribeiro

Monday, 28 October

Re: CVE Request: libxml2 external parsed entities issue Nicolas Grégoire

Tuesday, 29 October

Re: CVE request: 3 vulnerabilities in poppler and 1 in Xpdf Kurt Seifried
Re: CVE Request: libxml2 external parsed entities issue Huzaifa Sidhpurwala
Re: CVE Request: libxml2 external parsed entities issue Nicolas Grégoire
CVE request for a vulnerability in OpenStack Keystone Thierry Carrez
Xen Security Advisory 72 (CVE-2013-4416) - ocaml xenstored mishandles oversized message replies Xen . org security team
Re: CVE Request: libxml2 external parsed entities issue Kurt Seifried
Re: CVE request for a vulnerability in OpenStack Keystone Kurt Seifried
CVE Request: sup MUA Command Injection Salvatore Bonaccorso
Re: CVE Request: sup MUA Command Injection Kurt Seifried

Wednesday, 30 October

Re: CVE Request: sup MUA Command Injection Murray McAllister
Re: CVE Request: sup MUA Command Injection Kurt Seifried
CVE Request -- Linux kernel: ipc: ipc_rcu_putref refcount races Petr Matousek
Re: CVE Request -- Linux kernel: ipc: ipc_rcu_putref refcount races Kurt Seifried
Re: CVE number needed for Varnish DoS, also heads-up Kurt Seifried
[OSSA 2013-028] Unintentional role granting with Keystone LDAP backend (CVE-2013-4477) Thierry Carrez

Thursday, 31 October

CVE Request Radhesh Krishnan K
Re: CVE Request: gnutls/libdane buffer overflow Tomas Hoger
[OSSA 2013-029] Potential Nova denial of service through compressed disk images (CVE-2013-4463, CVE-2013-4469) Thierry Carrez
Re: CVE Request: gnutls/libdane buffer overflow Kurt Seifried
Re: CVE Request Kurt Seifried

Friday, 01 November

Xen Security Advisory 73 - Lock order reversal between page allocation and grant table locks Xen . org security team
Xen Security Advisory 73 - Lock order reversal between page allocation and grant table locks Xen . org security team
Re: Xen Security Advisory 73 - Lock order reversal between page allocation and grant table locks Kurt Seifried

Sunday, 03 November

CVE request for Drupal contributed modules Forest Monsen
CVE request for a vulnerability in OpenStack Nova Jeremy Stanley
Re: CVE request for a vulnerability in OpenStack Nova Kurt Seifried
some unstracked linux kernel security fixes Nico Golde
Re: CVE request for Drupal contributed modules Kurt Seifried

Monday, 04 November

possible CVE request: Tryton client input sanitization flaw Murray McAllister
CVE Request: IBUS showing passwords during password input Marcus Meissner
Xen Security Advisory 73 (CVE-2013-4494) - Lock order reversal between page allocation and grant table locks Xen . org security team
Re: CVE Request: IBUS showing passwords during password input Fuminobu TAKEYAMA
CVE Request: lighttpd using vulnerable cipher suites with SNI Stefan Bühler
openssl default ciphers Stefan Bühler
Re: openssl default ciphers Daniel Kahn Gillmor
Re: openssl default ciphers Eric H. Christensen
Re: openssl default ciphers Hanno Böck
Re: openssl default ciphers Russ Allbery
XSS in CollectiveAccess 1.3 and earlier Daniel Kahn Gillmor
Re: openssl default ciphers Stefan Bühler
Re: openssl default ciphers Mike
CVE-2013-4489 Remote code execution vulnerability in the code search feature of GitLab Jacob Vosmaer
CVE-2013-4490 Remote code execution vulnerability in the SSH key upload feature of GitLab Jacob Vosmaer
Re: openssl default ciphers Eric H. Christensen
Re: openssl default ciphers leToff
Re: XSS in CollectiveAccess 1.3 and earlier Kurt Seifried
Re: CVE Request: lighttpd using vulnerable cipher suites with SNI Kurt Seifried
Re: Re: CVE Request: IBUS showing passwords during password input Kurt Seifried
Re: possible CVE request: Tryton client input sanitization flaw Kurt Seifried
Re: some unstracked linux kernel security fixes Kurt Seifried
Re: openssl default ciphers Reed Loden
Re: Randomness Attacks Against PHP Applications Solar Designer

Tuesday, 05 November

CVE request: drupalauth module for simpleSAMLphp trivial impersonation Thijs Kinkhorst
Re: openssl default ciphers Stefan Bühler
Re: openssl default ciphers Florian Weimer
CVE Request: additional fix for CVE-2012-2825 libxslt crash Marcus Meissner
Re: CVE Request: additional fix for CVE-2012-2825 libxslt crash Vincent Danen
Re: CVE Request: additional fix for CVE-2012-2825 libxslt crash Florian Weimer
Re: CVE Request: additional fix for CVE-2012-2825 libxslt crash Marcus Meissner

Wednesday, 06 November

Re: CVE Request: additional fix for CVE-2012-2825 libxslt crash Vincent Danen
Re: CVE Request: additional fix for CVE-2012-2825 libxslt crash Kurt Seifried
Re: CVE request for Drupal contributed modules Forest Monsen

Thursday, 07 November

Re: Source of bad password hashing practices? MySQL manual... John Haxby

Friday, 08 November

Advisory report - Multiple memory corruption and race condition in Goodix gt915 Android touchscreen driver (CVE-2013-4740 & CVE-2013-6122) Jonathan Salwan
CVE Request - OpenSSH mancha
Re: CVE Request - OpenSSH Kurt Seifried
Xen Security Advisory 75 - Host crash due to guest VMX instruction execution Xen . org security team
CVE Request: bip denial of service via resource leak Marc Deslauriers
Re: CVE request: drupalauth module for simpleSAMLphp trivial impersonation Kurt Seifried
Re: CVE Request: bip denial of service via resource leak Kurt Seifried
Re: Xen Security Advisory 75 - Host crash due to guest VMX instruction execution Kurt Seifried

Sunday, 10 November

CVE Request: multiple vulnerabilities in spip Salvatore Bonaccorso
CVE-2013-6765 CVE-2013-6766 for OpenVAS 4.0.4/1.3.2/etc. cve-assign
Re: CVE Request: multiple vulnerabilities in spip David Prévot
Re: CVE Request: multiple vulnerabilities in spip Kurt Seifried

Monday, 11 November

Xen Security Advisory 75 (CVE-2013-4551) - Host crash due to guest VMX instruction execution Xen . org security team
Security vulnerability in gitlab-shell (CVE-2013-4546) Jacob Vosmaer

Tuesday, 12 November

Re: some unstracked linux kernel security fixes Petr Matousek
CVE-2013-6780 for YUI 2.x 2013-11-11 uploader.swf issue cve-assign
CVE Request: lighttpd multiple issues (setuid/... unchecked return value, FAM: read after free) Stefan Bühler
Re: CVE Request: lighttpd multiple issues (setuid/... unchecked return value, FAM: read after free) Kurt Seifried
CVE request: rubygem omniauth-facebook CSRF vurnerability Josef Šimánek
Re: CVE request: rubygem omniauth-facebook CSRF vurnerability Kurt Seifried
Re: CVE request: rubygem omniauth-facebook CSRF vurnerability Josef Šimánek

Wednesday, 13 November

Re: Re: CVE request: rubygem omniauth-facebook CSRF vurnerability Kurt Seifried
perdition: ssl_outgoing_ciphers not applied to STARTTLS connections Daniel Kahn Gillmor
Microsoft Warns Customers Away From RC4 and SHA-1 Kurt Seifried
Re: Microsoft Warns Customers Away From RC4 and SHA-1 Tim
Re: Microsoft Warns Customers Away From RC4 and SHA-1 Eric H. Christensen
Re: Microsoft Warns Customers Away From RC4 and SHA-1 Tim
cryptographic primitive choices [was: Re: Microsoft Warns Customers Away From RC4 and SHA-1] Daniel Kahn Gillmor
RE: [vs-plain] Request for CVE Identifiers Jenny Han Donnelly
CVE-2013-4563 -- Linux kernel: net: large udp packet over IPv6 over UFO-enabled device with TBF qdisc panic Petr Matousek
Re: CVE-2013-4563 -- Linux kernel: net: large udp packet over IPv6 over UFO-enabled device with TBF qdisc panic Kurt Seifried
Re: RE: [vs-plain] Request for CVE Identifiers Kurt Seifried

Thursday, 14 November

CVE request: ppthtml heap-based buffer overflow Murray McAllister
Re: CVE request: ppthtml heap-based buffer overflow Kurt Seifried
Re: CVE request: ppthtml heap-based buffer overflow Michael Gilbert
Re: CVE request: ppthtml heap-based buffer overflow Murray McAllister
Re: some unstracked linux kernel security fixes Petr Matousek
"I miss LSD", slides, paper and tools relating to finding UNIX system level vulnerabilities (as given at 44CON) Tim Brown
Re: some unstracked linux kernel security fixes Dan Carpenter
Requesting four (4) CVE identifiers for GitLab Jacob Vosmaer
Re: some unstracked linux kernel security fixes Petr Matousek
[OSSA 2013-030] XenAPI security groups not kept through migrate or resize (CVE-2013-4497) Jeremy Stanley
CVE-2013-6282 - linux kernel: missing access checks in get_user/put_user on ARM Nico Golde
mod_nss FakeBasicAuth authentication bypass Tomas Hoger
CVE request: ath9k_htc improperly updates MAC address Mathy Vanhoef

Friday, 15 November

CVE Request: grub-mkconfig Seth Arnold
Re: CVE Request: grub-mkconfig Kurt Seifried
Re: CVE request: ath9k_htc improperly updates MAC address Kurt Seifried
Re: Requesting four (4) CVE identifiers for GitLab Kurt Seifried
Re: "I miss LSD", slides, paper and tools relating to finding UNIX system level vulnerabilities (as given at 44CON) Kurt Seifried
Re: perdition: ssl_outgoing_ciphers not applied to STARTTLS connections Kurt Seifried
Re: cryptographic primitive choices [was: Re: Microsoft Warns Customers Away From RC4 and SHA-1] Tim
Re: cryptographic primitive choices [was: Re: Microsoft Warns Customers Away From RC4 and SHA-1] Kurt Seifried
Re: cryptographic primitive choices [was: Re: Microsoft Warns Customers Away From RC4 and SHA-1] Chris Palmer
Re: cryptographic primitive choices [was: Re: Microsoft Warns Customers Away From RC4 and SHA-1] Kurt Seifried
CVE request: Linux kernel: net: ipvs stack buffer overflow P J P
Re: CVE request: Linux kernel: net: ipvs stack buffer overflow Kurt Seifried
CVE request for graphicsmagick DoS Vincent Danen
Re: CVE request for graphicsmagick DoS Kurt Seifried
Re: cryptographic primitive choices [was: Re: Microsoft Warns Customers Away From RC4 and SHA-1] Chris Palmer
Re: cryptographic primitive choices [was: Re: Microsoft Warns Customers Away From RC4 and SHA-1] Seth Arnold
Re: cryptographic primitive choices [was: Re: Microsoft Warns Customers Away From RC4 and SHA-1] Kurt Seifried
Re: cryptographic primitive choices [was: Re: Microsoft Warns Customers Away From RC4 and SHA-1] Marcus Meissner
CVE request: RubyGem omniauth-facebook access token security vulnerability Josef Šimánek
Re: cryptographic primitive choices [was: Re: Microsoft Warns Customers Away From RC4 and SHA-1] Tim

Monday, 18 November

CVE request for Drupal contributed modules Forest Monsen
CVE-2013-4591 -- Linux kernel: kernel: nfs: missing check for buffer length in __nfs4_get_acl_uncached Petr Matousek
CVE-2013-4592 -- Linux kernel: kvm: memory leak when memory slot is moved with assigned device Petr Matousek
Re: Requesting four (4) CVE identifiers for GitLab Jacob Vosmaer
Re: CVE request: RubyGem omniauth-facebook access token security vulnerability Josef Šimánek
Re: Re: CVE request: RubyGem omniauth-facebook access token security vulnerability Kurt Seifried
Re: CVE request for Drupal contributed modules Kurt Seifried

Tuesday, 19 November

CVE requests for three Linux kernel issues Moritz Muehlenhoff
Re: CVE requests for three Linux kernel issues Petr Matousek

Wednesday, 20 November

Re: CVE requests for three Linux kernel issues P J P
Re: CVE requests for three Linux kernel issues Daniel Borkmann
Xen Security Advisory 78 - Insufficient TLB flushing in VT-d (iommu) code Xen . org security team

Thursday, 21 November

Re: Xen Security Advisory 78 - Insufficient TLB flushing in VT-d (iommu) code Kurt Seifried
Xen Security Advisory 78 (CVE-2013-6375) - Insufficient TLB flushing in VT-d (iommu) code Xen . org security team
389-ds DoS due to improper handling of ger attr searches (CVE-2013-4485) Vincent Danen

Friday, 22 November

Please REJECT CVE-2013-6377 Kurt Seifried
CVE request for a vulnerability in OpenStack Ceilometer Thierry Carrez
Re: CVE request for a vulnerability in OpenStack Ceilometer Kurt Seifried
SA-CORE-2013-003 - Drupal core - Multiple vulnerabilities Kurt Seifried
Linux kernel CVE fixes Kees Cook

Monday, 25 November

Moodle security notifications public Michael de Raadt
CVE request: Kernel MSM - Memory leak in drivers/base/genlock.c Jonathan Salwan
[OSSA 2013-031] Ceilometer DB2/MongoDB backend password leak (CVE-2013-6384) Thierry Carrez
Re: CVE request: Kernel MSM - Memory leak in drivers/base/genlock.c Kurt Seifried

Tuesday, 26 November

RE: CVE request: Kernel MSM - Memory leak in drivers/base/genlock.c Christey, Steven M.
Re: CVE request: Kernel MSM - Memory leak in drivers/base/genlock.c Seth Arnold
Re: CVE request: Kernel MSM - Memory leak in drivers/base/genlock.c Ramon de C Valle
CVE request: XSS flaw in Ganglia web interface Murray McAllister
CVE Request: static IV used in Percona XtraBackup Marcus Meissner
kernel: uio: CVE-2013-6763 [was: Re: [oss-security] some unstracked linux kernel security fixes] Petr Matousek
CVE Request: FFmpeg 2.1 multiple problems Michael Niedermayer
Xen Security Advisory 74 (CVE-2013-4553) - Lock order reversal between page_alloc_lock and mm_rwlock Xen . org security team
Xen Security Advisory 76 (CVE-2013-4554) - Hypercalls exposed to privilege rings 1 and 2 of HVM guests Xen . org security team
Re: CVE Request: FFmpeg 2.1 multiple problems Kurt Seifried
Re: CVE Request: static IV used in Percona XtraBackup Kurt Seifried
Re: CVE request: XSS flaw in Ganglia web interface Kurt Seifried
Re: CVE Request: static IV used in Percona XtraBackup Florian Weimer
CVE request: Apache Solr 4.6.0 Nicolas Grégoire
Re: CVE Request: static IV used in Percona XtraBackup Michael Samuel

Wednesday, 27 November

Re: CVE request: Apache Solr 4.6.0 Kurt Seifried
Re: CVE Request: static IV used in Percona XtraBackup P J P
Re: Linux kernel CVE fixes Marcus Meissner
CVE request: hplip insecure temporary file handling in pkit.py Ratul Gupta
Re: CVE request: hplip insecure temporary file handling in pkit.py Raphael Geissert
Re: CVE request: hplip insecure temporary file handling in pkit.py Sebastian Krahmer

Thursday, 28 November

CVE-2013-6885 AMD Publ. 51810 Errata 793 system hang cve-assign
CVE Request: Quassel IRC - manipulated clients can access backlog of all users on a shared core Manuel Nickschas
Re: CVE request: hplip insecure temporary file handling in pkit.py Kurt Seifried
Re: CVE request: hplip insecure temporary file handling in pkit.py Kurt Seifried
CVE Request: ownCloud security bypass on admin page Murray McAllister
Re: CVE Request: ownCloud security bypass on admin page Kurt Seifried
Re: CVE Request: FFmpeg 2.1 multiple problems Kurt Seifried
Re: CVE Request: Quassel IRC - manipulated clients can access backlog of all users on a shared core Kurt Seifried
Re: CVE Request: FFmpeg 2.1 multiple problems Michael Niedermayer
CVE Request: adequate: privilege escalation via tty hijacking Salvatore Bonaccorso
CVE request: incorrect parsing of access control file in nbd-server Wouter Verhelst
CVE Request: Linux kernel: net: uninitialised memory leakage P J P
Re: CVE Request: Linux kernel: net: uninitialised memory leakage Kurt Seifried
Re: CVE Request: Linux kernel: net: uninitialised memory leakage Hannes Frederic Sowa
Re: CVE Request: Linux kernel: net: uninitialised memory leakage P J P
http://nvd.nist.gov/nvd.cfm?cvename=CVE-XXX URLs result in 404 Alex Legler
CVE request for OpenTTD Rubidium

Friday, 29 November

CVE Request: Apache Solr XXE David Jorm
Re: CVE Request: Apache Solr XXE Kurt Seifried
Re: CVE request for OpenTTD Kurt Seifried
Re: CVE request: incorrect parsing of access control file in nbd-server Kurt Seifried
Re: CVE Request: adequate: privilege escalation via tty hijacking Kurt Seifried
CVE request: ClamAV vulnerabilities Sergey Popov
CVE request: UnrealIRCd remote DoS Henri Salo
RE: http://nvd.nist.gov/nvd.cfm?cvename=CVE-XXX URLs result in 404 Izadjoo, Meisam
Re: CVE request: ClamAV vulnerabilities Kurt Seifried
RE: http://nvd.nist.gov/nvd.cfm?cvename=CVE-XXX URLs result in 404 Izadjoo, Meisam

Saturday, 30 November

Re: CVE request: UnrealIRCd remote DoS Kurt Seifried
Re: CVE request: ClamAV vulnerabilities George Theall

Monday, 02 December

Xen Security Advisory 82 (CVE-2013-6885) - Guest triggerable AMD CPU erratum may cause host hang Xen . org security team
Re: Xen Security Advisory 82 (CVE-2013-6885) - Guest triggerable AMD CPU erratum may cause host hang Ian Jackson
Re: Re: Xen Security Advisory 82 (CVE-2013-6885) - Guest triggerable AMD CPU erratum may cause host hang Kurt Seifried
CVE Rejections Kurt Seifried
CVE request: samba pam_winbind authentication fails open Vincent Danen
Re: Re: Xen Security Advisory 82 (CVE-2013-6885) - Guest triggerable AMD CPU erratum may cause host hang Matthew Daley
Re: Xen Security Advisory 82 (CVE-2013-6885) - Guest triggerable AMD CPU erratum may cause host hang cve-assign

Tuesday, 03 December

Command injection vulnerability in Ruby Gem sprout 0.7.246 Larry W. Cashdollar
Re: Re: Xen Security Advisory 82 (CVE-2013-6885) - Guest triggerable AMD CPU erratum may cause host hang Kurt Seifried
Re: kernel: uio: CVE-2013-6763 [was: Re: [oss-security] some unstracked linux kernel security fixes] Greg Kroah-Hartman
Re: kernel: uio: CVE-2013-6763 [was: Re: [oss-security] some unstracked linux kernel security fixes] Linus Torvalds
Re: CVE request: samba pam_winbind authentication fails open Kurt Seifried
Re: Command injection vulnerability in Ruby Gem sprout 0.7.246 Kurt Seifried
SNMPD DoS #2411 snmpd crashes/hangs when AgentX subagent times-out Kurt Seifried
CVE Request: xorg-server and pixman Jamie Strandboge
[CVE-2013-6414] Denial of Service Vulnerability in Action View Aaron Patterson
[CVE-2013-4491] Reflective XSS Vulnerability in Ruby on Rails Aaron Patterson
[CVE-2013-6415] XSS Vulnerability in number_to_currency Aaron Patterson
[CVE-2013-6417] Incomplete fix to CVE-2013-0155 (Unsafe Query Generation Risk) Aaron Patterson
[CVE-2013-6416] XSS Vulnerability in simple_format helper Aaron Patterson
Re: [CVE-2013-4491] Reflective XSS Vulnerability in Ruby on Rails kpolitowicz
Re: Re: [CVE-2013-4491] Reflective XSS Vulnerability in Ruby on Rails Kurt Seifried

Wednesday, 04 December

Duplicate OpenStack CVEs for Horizon? Jamie Strandboge
Re: Duplicate OpenStack CVEs for Horizon? Kurt Seifried
Re: CVE Request: xorg-server and pixman Kurt Seifried
Re: CVE Request: xorg-server and pixman Murray McAllister
Re: kernel: uio: CVE-2013-6763 [was: Re: [oss-security] some unstracked linux kernel security fixes] Petr Matousek
Fwd: [vs] multiple issues in openjpeg Raphael Geissert
Re: CVE Request: xorg-server and pixman Jamie Strandboge
Re: CVE Request: xorg-server and pixman Kurt Seifried
Re: SNMPD DoS #2411 snmpd crashes/hangs when AgentX subagent times-out Kurt Seifried
Re: [Xen-devel] [oss-security] Re: Xen Security Advisory 82 (CVE-2013-6885) - Guest triggerable AMD CPU erratum may cause host hang Andrew Cooper
gimp - two xwd plugin issues Tomas Hoger
mod_nss - NSSVerifyClient handling issue Tomas Hoger

Thursday, 05 December

CVE needed for hplip insecure auto update feature? Murray McAllister
Re: CVE needed for hplip insecure auto update feature? Kurt Seifried
Re: Re: [CVE-2013-4491] Reflective XSS Vulnerability in Ruby on Rails Christopher Dell
Re: [CVE-2013-4491] Reflective XSS Vulnerability in Ruby on Rails chris

Friday, 06 December

Re: Re: [CVE-2013-4491] Reflective XSS Vulnerability in Ruby on Rails Kurt Seifried
CVE request: Kernel: ping: NULL pointer dereference on write to msg_name P J P
CVE request: Linux kernel: net: fib: fib6_add: potential NULL pointer dereference P J P
Re: CVE request: Kernel: ping: NULL pointer dereference on write to msg_name Vasily Kulikov
Re: CVE request: Linux kernel: net: fib: fib6_add: potential NULL pointer dereference Kurt Seifried
Re: CVE request: Kernel: ping: NULL pointer dereference on write to msg_name Kurt Seifried
CVE request for Drupal core, and contributed modules Forest Monsen

Saturday, 07 December

Re: CVE request for Drupal core, and contributed modules Henri Salo
Re: CVE request: ClamAV vulnerabilities Kurt Seifried
Re: CVE Request: FFmpeg 2.1 multiple problems Kurt Seifried
CVE assignments on OSS-Security for Dec 7-15th handed over the Mitre Kurt Seifried

Sunday, 08 December

Re: CVE request for Drupal core, and contributed modules Forest Monsen
Re: CVE request for Drupal core, and contributed modules Kurt Seifried
Re: CVE Request: FFmpeg 2.1 multiple problems cve-assign

Monday, 09 December

CVE request: two issues in libmicrohttpd Murray McAllister
Issue with PYTHON_EGG_CACHE Grant Murphy
CPython hash secret can be recoved remotely Nick Coghlan
Re: CVE request: ClamAV vulnerabilities Sergey Popov
CVE request: pam: password hashes aren't compared case-sensitively Ratul Gupta
CVE request: monitorix: HTTP server 'handle_request()' session fixation & XSS vulnerabilities Ratul Gupta
Re: CVE request: pam: password hashes aren't compared case-sensitively Solar Designer
Re: CVE request: pam: password hashes aren't compared case-sensitively Raphael Geissert
Re: CVE request: two issues in libmicrohttpd Florian Weimer
Re: CVE request for Drupal core, and contributed modules Forest Monsen
Re: CVE request: two issues in libmicrohttpd cve-assign
Re: Issue with PYTHON_EGG_CACHE cve-assign
Re: CPython hash secret can be recoved remotely cve-assign
Re: CVE request: monitorix: HTTP server 'handle_request()' session fixation & XSS vulnerabilities cve-assign

Tuesday, 10 December

Re: CVE request: ClamAV vulnerabilities cve-assign
Re: CVE request: pam: password hashes aren't compared case-sensitively cve-assign
Re: CVE request for Drupal core, and contributed modules Forest Monsen
Please REJECT CVE-2013-2215 Garth Mollett
CVE request: Linux kernel: net: memory leak in recvmsg handler msg_name & msg_namelen logic P J P
Re: CVE request: Linux kernel: net: memory leak in recvmsg handler msg_name & msg_namelen logic Marcus Meissner
Re: CVE request: monitorix: HTTP server 'handle_request()' session fixation & XSS vulnerabilities Ratul Gupta
Re: CVE request: monitorix: HTTP server 'handle_request()' session fixation & XSS vulnerabilities George Theall
Xen Security Advisory 80 (CVE-2013-6400) - IOMMU TLB flushing may be inadvertently suppressed Xen . org security team
Xen Security Advisory 77 - Disaggregated domain management security status Xen . org security team
CVE Request: ack-grep: potential remote code execution via per-project .ackrc files Salvatore Bonaccorso
CVE request for remote code execution in ack Axel Beckert
Re: CVE request for remote code execution in ack Andy Lester
Re: CVE request for remote code execution in ack Axel Beckert
Re: CVE request for remote code execution in ack Andy Lester
Re: CVE Request: ack-grep: potential remote code execution via per-project .ackrc files Salvatore Bonaccorso
CVE request for Plone Matthew Wilkes
Re: CVE request: monitorix: HTTP server 'handle_request()' session fixation & XSS vulnerabilities cve-assign
Re: Re: CVE request: monitorix: HTTP server 'handle_request()' session fixation & XSS vulnerabilities George Theall

Wednesday, 11 December

CVE request: devscripts (uscan) command execution flaw Murray McAllister
Re: CVE request: devscripts (uscan) command execution flaw Murray McAllister
Re: CVE request: Linux kernel: net: info leak in recvmsg handler msg_name & msg_namelen logic P J P
CVE request: TYPO3-CORE-SA-2013-004 and TYPO3-FLOW-SA-2013-001 Henri Salo
CVE request for a vulnerability in OpenStack Nova Thierry Carrez
[OSSA 2013-032] Keystone trust circumvention through EC2-style tokens (CVE-2013-6391) Jeremy Stanley
[OSSA 2013-033] Metadata queries from Neutron to Nova are not restricted by tenant (CVE-2013-6419) Jeremy Stanley
[OSSA 2013-034] Heat CFN policy rules not all enforced (CVE-2013-6426) Jeremy Stanley
[OSSA 2013-034] Heat CFN policy rules not all enforced (CVE-2013-6426) Jeremy Stanley
[OSSA 2013-035] Heat ReST API doesn't respect tenant scoping (CVE-2013-6428) Jeremy Stanley
[OSSA 2013-036] Insufficient sanitization of Instance Name in Horizon (CVE-2013-6858) Jeremy Stanley
Re: CVE request: ClamAV vulnerabilities cve-assign
CVE Request: ZNC IRC Bouncer DoS in FiSH Plugin Jurriaan Bremer

Thursday, 12 December

Re: CVE request for Drupal core, and contributed modules cve-assign
Re: CVE Request: ack-grep: potential remote code execution via per-project .ackrc files cve-assign
Re: CVE request for Plone cve-assign
Re: CVE request: devscripts (uscan) command execution flaw cve-assign
Re: CVE request: TYPO3-CORE-SA-2013-004 and TYPO3-FLOW-SA-2013-001 cve-assign
Re: CVE request for a vulnerability in OpenStack Nova cve-assign
Re: CVE Request: ZNC IRC Bouncer DoS in FiSH Plugin cve-assign
Re: CVE request: monitorix: HTTP server 'handle_request()' session fixation & XSS vulnerabilities cve-assign
CVE Request: devscripts (uscan) broken handling of filenames with whitespace Ratul Gupta
Reject augeas CVE-2012-6607 Tomas Hoger
Command injection in Ruby Gem Webbynode 1.0.5.3 Larry W. Cashdollar
Re: [vs-plain] kvm issues Petr Matousek

Friday, 13 December

Re: CVE request: ClamAV vulnerabilities cve-assign
Re: CVE Request: devscripts (uscan) broken handling of filenames with whitespace cve-assign
Re: Command injection in Ruby Gem Webbynode 1.0.5.3 cve-assign
Re: [vs-plain] kvm issues Paolo Bonzini
Re: CVE-2013-2073 transifex-client: Does not validate HTTPS server certificate (fixed in transifex-client v0.9) Tomas Hoger

Saturday, 14 December

Re: Re: Issue with PYTHON_EGG_CACHE Kurt Seifried
Bio Basespace SDK 0.1.7 Ruby Gem exposes API Key via command line Larry W. Cashdollar

Sunday, 15 December

Re: Bio Basespace SDK 0.1.7 Ruby Gem exposes API Key via command line Larry W. Cashdollar
Re: Issue with PYTHON_EGG_CACHE cve-assign
Re: CVE-2013-2073 transifex-client: Does not validate HTTPS server certificate (fixed in transifex-client v0.9) cve-assign
Re: Re: Issue with PYTHON_EGG_CACHE Jeremy Stanley
Re: Bio Basespace SDK 0.1.7 Ruby Gem exposes API Key via command line cve-assign
Re: Re: Issue with PYTHON_EGG_CACHE Kurt Seifried

Monday, 16 December

Re: Re: CVE-2013-2073 transifex-client: Does not validate HTTPS server certificate (fixed in transifex-client v0.9) Tomas Hoger
Re: Re: Issue with PYTHON_EGG_CACHE Yves-Alexis Perez
CVE request: Juvia secret token handling Stefan Bühler
Fwd: Vulnerability (Buffer Overflow) in Icinga 1.8, 1.9 and 1.10 (Icinga Issue #5250) Vulnerability (Off-by-one memory access) in Icinga 1.8, 1.9 and 1.10 (Icinga Issue #5251) Ricardo
CVE Request: Proc::Daemon writes pidfile with mode 666 Salvatore Bonaccorso

Tuesday, 17 December

Re: Re: CVE-2013-2073 transifex-client: Does not validate HTTPS server certificate (fixed in transifex-client v0.9) Kurt Seifried
Re: Re: Issue with PYTHON_EGG_CACHE Kurt Seifried
Re: Re: Issue with PYTHON_EGG_CACHE Yves-Alexis Perez

Wednesday, 18 December

Re: CVE request: Juvia secret token handling cve-assign
Re: CVE Request: Proc::Daemon writes pidfile with mode 666 cve-assign
CVE Request: pywbem certificate TOCTOU Sebastian Krahmer
[OSSA 2013-037] Nova compute DoS through ephemeral disk backing files (CVE-2013-6437) Thierry Carrez
GnuPG 1.4.16 fixes RSA key extraction via acoustic side channel (CVE-2013-4576) Solar Designer
CVE already assigned for 1026891? cve-assign
Re: CVE already assigned for 1026891? Vincent Danen
Re: GnuPG 1.4.16 fixes RSA key extraction via acoustic side channel (CVE-2013-4576) mancha

Thursday, 19 December

Re: CVE already assigned for 1026891? Murray McAllister
possible CVE request for rpath issues fixed via slackware updates Murray McAllister
CVE REJECTS Kurt Seifried

Friday, 20 December

Re: possible CVE request for rpath issues fixed via slackware updates cve-assign
CVE request: Asterisk AST-2013-007 Moritz Muehlenhoff
Re: CVE already assigned for 1026891? Marcus Meissner
Re: CVE request: Asterisk AST-2013-007 cve-assign
Re: CVE already assigned for 1026891? Vincent Danen

Sunday, 22 December

Re: [CVE-2013-4491] Reflective XSS Vulnerability in Ruby on Rails nick
Re: [CVE-2013-4491] Reflective XSS Vulnerability in Ruby on Rails Solar Designer
Re: CVE REJECTS Solar Designer
Re: [SECURITY] [DSA 2826-1] denyhosts security update Helmut Grohne
Re: Re: [SECURITY] [DSA 2826-1] denyhosts security update Yves-Alexis Perez

Monday, 23 December

Re: CVE REJECTS Kurt Seifried
CVE Request: wordpress: information leakage and backdoor vulnerabilities in writing settings Ratul Gupta
Re: CVE Request: wordpress: information leakage and backdoor vulnerabilities in writing settings cve-assign
CVE request: denial of service in Nagios (process_cgivars()) Vincent Danen
Re: CVE request: denial of service in Nagios (process_cgivars()) Salvatore Bonaccorso
Re: CVE Request: gitolite world writable files for fresh installs of v3.5.3 Salvatore Bonaccorso
Re: CVE request: denial of service in Nagios (process_cgivars()) cve-assign
Re: CVE Request: gitolite world writable files for fresh installs of v3.5.3 cve-assign
Re: CVE request: denial of service in Nagios (process_cgivars()) Vincent Danen
CVE issues with recent python flaws Vincent Danen

Tuesday, 24 December

Re: CVE request: denial of service in Nagios (process_cgivars()) cve-assign

Thursday, 26 December

CVE Request: rubygem-will_paginate XSS vulnerabilities Ratul Gupta
CVE Request: rubygem-nokogiri Multiple DoS vulnerabilities Ratul Gupta

Friday, 27 December

Re: CVE Request: rubygem-will_paginate XSS vulnerabilities Kurt Seifried
Re: CVE Request: rubygem-nokogiri Multiple DoS vulnerabilities Kurt Seifried
Re: CVE issues with recent python flaws Kurt Seifried
Two CVE request for gnome-shell/screensaver issues Huzaifa Sidhpurwala
Re: Two CVE request for gnome-shell/screensaver issues cve-assign
Re: Re: Two CVE request for gnome-shell/screensaver issues Huzaifa Sidhpurwala
Re: CVE request: monitorix: HTTP server 'handle_req uest()' session fixation & XSS vulnerabilitie s (clearing up confusion) Jordi Sanfeliu
Re: Two CVE request for gnome-shell/screensaver issues cve-assign
Re: CVE issues with recent python flaws cve-assign

Saturday, 28 December

CVE request: Fat Free CRM multiple vulnerabilities Henri Salo
Re: CVE request: Fat Free CRM multiple vulnerabilities cve-assign

Sunday, 29 December

CVE request: Zenphoto 1.4.5.4 Henri Salo

Monday, 30 December

CVE request: SMF 1.1.19, 2.0.6 Henri Salo
Re: CVE request: cmsmadesimple before 1.11.8 / bad upstream behaviour vs. CVE assignment Henri Salo
Re: CVE request: SMF 1.1.19, 2.0.6 cve-assign
CVE Request: SASL authentication allows wrong credentials to access memcache Salvatore Bonaccorso
CVE-request: Dewplayer issues Henri Salo
CVE to the ntp monlist DDoS issue? Mike O'Connor
Re: CVE to the ntp monlist DDoS issue? cve-assign
Re: CVE request: cmsmadesimple before 1.11.8 / bad upstream behaviour vs. CVE assignment cve-assign
Re: CVE-request: Dewplayer issues cve-assign
Re: CVE request: Zenphoto 1.4.5.4 cve-assign
Re: CVE Request: SASL authentication allows wrong credentials to access memcache cve-assign
Re: Re: CVE to the ntp monlist DDoS issue? Moritz Muehlenhoff
Re: Re: CVE to the ntp monlist DDoS issue? Florian Weimer

Tuesday, 31 December

Re: CVE request: Fat Free CRM multiple vulnerabilities Steve Kenworthy
Re: CVE to the ntp monlist DDoS issue? Xin Li
Re: CVE request: Linux kernel: net: memory leak in recvmsg handler msg_name & msg_namelen logic P J P
CVE request - kernel: char: Int overflow in lp_do_ioctl() Yongjian Xu
Re: CVE request - kernel: char: Int overflow in lp_do_ioctl() Greg KH
CVE request: Linux kernel: net: memory leak in recvmsg handlermsg_name & msg_namelen logic P J P
Re: CVE request: Linux kernel: net: memory leak in recvmsg handlermsg_name & msg_namelen logic Kurt Seifried
Re: CVE request: Fat Free CRM multiple vulnerabilities cve-assign
Previous period Next period
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]