oss-sec: by date

• RSS Feed
• About List
• All Lists

Previous period

Next period

291 messages starting Jan 02 10 and ending Mar 31 10
Date index | Thread index | Author index

Saturday, 02 January

CVE request - pidgin MSN arbitrary file upload Paul Aurich

Wednesday, 06 January

CVE request - uzbl remote code execution Giuseppe Iuculano
CVE Request: Transmission Jamie Strandboge
Re: CVE request - uzbl remote code execution Josh Bressers
Re: CVE Request: Transmission Josh Bressers

Thursday, 07 January

Re: CVE request - pidgin MSN arbitrary file upload Josh Bressers
Re: CVE request - pidgin MSN arbitrary file upload Nico Golde
CVE id request: GNU libc: NIS shadow password leakage Aurelien Jarno

Friday, 08 January

Re: CVE id request: GNU libc: NIS shadow password leakage Josh Bressers
Re: CVE id request: GNU libc: NIS shadow password leakage Christoph Pleger

Saturday, 09 January

Re: CVE request - pidgin MSN arbitrary file upload Steven M. Christey

Monday, 11 January

FreeRadius 1.1.7 CVE-2009-4481 being duplicate of CVE-2009-3111 Jan Lieskovsky
CVE Request: viewvc Ludwig Nussel
Re: CVE id request: GNU libc: NIS shadow password leakage Tomas Hoger
Re: CVE id request: GNU libc: NIS shadow password leakage Christoph Pleger
CVE Request: phpMyAdmin Ludwig Nussel
Re: CVE id request: GNU libc: NIS shadow password leakage Josh Bressers
Re: CVE Request: phpMyAdmin Josh Bressers
CVE request - kernel: infoleak if print-fatal-signals=1 Eugene Teo

Tuesday, 12 January

Re: CVE Request: phpMyAdmin Steven M. Christey
Re: FreeRadius 1.1.7 CVE-2009-4481 being duplicate of CVE-2009-3111 Steven M. Christey

Wednesday, 13 January

[PATCH] memory consumption (DoS) in openssl CVE-2009-4355 Michael K. Johnson
Re: CVE request - kernel: infoleak if print-fatal-signals=1 Josh Bressers
Re: CVE Request: viewvc Josh Bressers
CVE Request: kernel ebtables perm check dann frazier
CVE-2010-0006 - kernel: ipv6: skb_dst() can be NULL in ipv6_hop_jumbo() Eugene Teo
Re: CVE Request: kernel ebtables perm check Eugene Teo

Thursday, 14 January

Re: CVE Request: viewvc Nico Golde

Friday, 15 January

gnome doesn't lock external screen after resume Ludwig Nussel

Saturday, 16 January

CVE request: typo3 < 4.3.1 openid authentication bypass Hanno Böck
CVE request: phpbb before 3.0.5 Hanno Böck

Sunday, 17 January

CVE request: dokuwiki Giuseppe Iuculano

Monday, 18 January

Evolution denial of service bug ... Marcus Meissner
BerliOS.de comrpomise Josh Bressers
CVE request - kernel: untangle the do_mremap() mess Eugene Teo

Tuesday, 19 January

Re: gnome doesn't lock external screen after resume Josh Bressers
Re: CVE request: typo3 < 4.3.1 openid authentication bypass Josh Bressers
Re: CVE request: phpbb before 3.0.5 Josh Bressers
Re: CVE request: dokuwiki Josh Bressers
Re: Evolution denial of service bug ... Josh Bressers
Re: CVE request - kernel: untangle the do_mremap() mess Josh Bressers
BIND CVE-2009-4022 fix incomplete Josh Bressers
Re: CVE request: dokuwiki Solar Designer
CVE-2009-4272 kernel: emergency route cache flushing leads to node deadlock Eugene Teo
CVE-2009-3556 kernel: qla2xxx NPIV vport management pseudofiles are world writable Eugene Teo
Re: CVE request - kernel: untangle the do_mremap() mess Eugene Teo
Re: CVE request - kernel: untangle the do_mremap() mess Greg KH
Re: CVE request - kernel: untangle the do_mremap() mess Steven M. Christey

Wednesday, 20 January

Re: CVE-2009-4272 kernel: emergency route cache flushing leads to node deadlock Eugene Teo
Re: BerliOS.de comrpomise Nico Golde
Re: BIND CVE-2009-4022 fix incomplete Josh Bressers
Re: CVE request - kernel: untangle the do_mremap() mess Greg KH
Re: CVE request - kernel: untangle the do_mremap() mess Josh Bressers

Thursday, 21 January

CVE request - kernel: drm/radeon: r6xx/r7xx possible security issue, system ram access Eugene Teo
Re: CVE request - kernel: drm/radeon: r6xx/r7xx possible security issue, system ram access Eugene Teo
Re: CVE request - kernel: drm/radeon: r6xx/r7xx possible security issue, system ram access Ludwig Nussel
Re: CVE request - kernel: untangle the do_mremap() mess Marcus Meissner
Re: CVE request - kernel: drm/radeon: r6xx/r7xx possible security issue, system ram access Jerome Glisse
CVE request: MoinMoin information disclosure Raphael Geissert

Wednesday, 27 January

CVE id request: postgresql bitsubstr overflow Nico Golde
CVE id request: maildrop Steffen Joeris
Re: CVE id request: postgresql bitsubstr overflow Josh Bressers
CVE id: hybserv Steffen Joeris
Re: CVE id request: postgresql bitsubstr overflow Steven M. Christey

Thursday, 28 January

Re: CVE id request: maildrop Josh Bressers
Re: CVE id request: maildrop Steffen Joeris
Re: CVE id request: maildrop Josh Bressers

Friday, 29 January

CVE Request -- ejabberd Jan Lieskovsky
Re: CVE id: hybserv Josh Bressers
CVE id request: Wireshark Eren Türkay
Re: CVE id request: Wireshark Josh Bressers
Re: CVE Request -- ejabberd Josh Bressers

Sunday, 31 January

CVE request - kernel: DoS on x86_64 Eugene Teo
Re: CVE requests - kernel security regressions for CVE-2009-1385/and -1389 Eugene Teo

Monday, 01 February

CVE Request -- Squid -- SQUID-2010_1.txt Jan Lieskovsky
CVE Request -- OCSNG_UNIX_SERVER-1.02.2 Jan Lieskovsky
Re: CVE request - kernel: DoS on x86_64 Josh Bressers
Re: CVE Request -- Squid -- SQUID-2010_1.txt Josh Bressers
Re: CVE Request -- OCSNG_UNIX_SERVER-1.02.2 Josh Bressers
lighttpd: slow request dos/oom attack [CVE-2010-0295] Stefan Bühler
CVE request - kvm: cat /dev/port in the guest can cause host DoS Eugene Teo

Tuesday, 02 February

KVM possible security issues fixed Thomas Biege
Re: KVM possible security issues fixed Eugene Teo
Re: CVE request - kvm: cat /dev/port in the guest can cause host DoS Josh Bressers

Wednesday, 03 February

CVE request: kernel OOM/crash in drivers/connector Marcus Meissner
CVE Request -- GMime-2.4.15 Jan Lieskovsky
Re: CVE request: kernel OOM/crash in drivers/connector Josh Bressers
Re: CVE Request -- GMime-2.4.15 Josh Bressers
Re: CVE request - kernel: DoS on x86_64 dann frazier
Re: CVE request - kernel: DoS on x86_64 Eugene Teo

Thursday, 04 February

Re: KVM possible security issues fixed Eren Türkay
CVE request - fetchmail 6.3.11-.13 heap overflow in verbose X.509 cert display (only printable chars) Matthias Andree
Re: CVE request - fetchmail 6.3.11-.13 heap overflow in verbose X.509 cert display (only printable chars) Nico Golde
Re: KVM possible security issues fixed Josh Bressers
CVE-2009-3297 clarification needed - samba/fuse/ncpfs symlinks Steven M. Christey
systemtap DoS issue (CVE-2010-0411) Vincent Danen
Re: CVE request - kernel: DoS on x86_64 dann frazier

Friday, 05 February

Samba symlink 0day flaw Josh Bressers
Re: Samba symlink 0day flaw Nico Golde
Re: Samba symlink 0day flaw Michael Gilbert
Re: Samba symlink 0day flaw Simo Sorce

Saturday, 06 February

Re: Samba symlink 0day flaw Eren Türkay
Re: Samba symlink 0day flaw Nico Golde
Re: Samba symlink 0day flaw Yves-Alexis Perez
CVE request: information leak / potential crash in sys_move_pages Marcus Meissner

Sunday, 07 February

Re: CVE request: information leak / potential crash in sys_move_pages Eugene Teo
Re: Samba symlink 0day flaw Nico Golde
CVE request - kernel: ima: fix null pointer dereference Eugene Teo

Monday, 08 February

Re: CVE request: information leak / potential crash in sys_move_pages Marcus Meissner
gnome-screensaver vulnerability (CVE-2010-0414) Vincent Danen
CVE request - kernel: race in ptrace Eugene Teo
CVE request - kernel: futex: Handle user space corruption gracefully Eugene Teo

Tuesday, 09 February

Fwd: CVE request - fetchmail 6.3.11-.13 heap overflow in verbose X.509 cert display (only printable chars) Matthias Andree
Re: CVE request - fetchmail 6.3.11-.13 heap overflow in verbose X.509 cert display (only printable chars) Tomas Hoger
CVE Request -- cURL/libCURL 7.20.0 Jan Lieskovsky
Re: CVE request - kernel: ima: fix null pointer dereference Greg KH
Re: CVE request - kernel: ima: fix null pointer dereference Eugene Teo
Re: CVE request - kernel: ima: fix null pointer dereference Mark J Cox
Re: CVE request - kernel: ima: fix null pointer dereference Eugene Teo
Re: CVE request - kernel: ima: fix null pointer dereference Greg KH
vulnerability in netpbm (CVE-2009-4274) Vincent Danen

Wednesday, 10 February

CVE request - coppermine gallery <1.4.26 code execution vulnerability Hanno Böck
CVE Request -- ModSecurity - v2.5.12 Jan Lieskovsky
Re: CVE request - kernel: race in ptrace Eugene Teo
CVE request - kernel: ip6_dst_lookup_tail() NULL pointer dereference Eugene Teo

Thursday, 11 February

Re: CVE request - kernel: futex: Handle user space corruption gracefully Steven M. Christey

Friday, 12 February

CVE Request: gnome-screensaver termination by pressing "Enter" Marcus Meissner
CVE Request: KDE screensaver unlock issue similar to GNOME one Marcus Meissner
Re: CVE Request: KDE screensaver unlock issue similar to GNOME one Jeff Mitchell
Re: Re: CVE Request: KDE screensaver unlock issue similar to GNOME one Jeff Mitchell
Re: gnome-screensaver vulnerability (CVE-2010-0414) Vincent Danen

Sunday, 14 February

Re: CVE request - kernel: race in ptrace Eugene Teo

Monday, 15 February

CVE Request -- MoinMoin -- 1.8.7 Jan Lieskovsky
Re: CVE Request -- MoinMoin -- 1.8.7 Thomas Waldmann
Re: CVE Request -- MoinMoin -- 1.8.7 Thomas Waldmann
CouchDB: Don't use a RESTful API from the browser, please Florian Weimer

Wednesday, 17 February

CVE request: kernel information leak via userspace USB interface Marcus Meissner
additional memory leak in USB userspace handling Marcus Meissner
Re: Re: CVE Request: KDE screensaver unlock issue similar to GNOME one Jeff Mitchell
Re: CVE request: kernel information leak via userspace USB interface Eugene Teo
Re: CVE request - kernel: DoS on x86_64 Eugene Teo
CVE requests - kernel network vulns Eugene Teo

Thursday, 18 February

Re: additional memory leak in USB userspace handling Eugene Teo
Re: CVE request: kernel information leak via userspace USB interface Marcus Meissner
Re: CVE request: kernel information leak via userspace USB interface Steven M. Christey
Re: CVE request: kernel information leak via userspace USB interface Bernhard R. Link
Re: CVE request: kernel information leak via userspace USB interface Eugene Teo

Sunday, 21 February

Re: CVE Request -- MoinMoin -- 1.8.7 Steven M. Christey
Re: CVE Request -- MoinMoin -- 1.8.7 Steven M. Christey
lwn: 2.6.32.9 Release notes Eugene Teo
CVE request: kernel: ALSA: hda-intel: Avoid divide by zero crash Eugene Teo

Monday, 22 February

CVE-2005-4886 assigned to old remote oops Mark J Cox
WANTED: mikmod patches Thomas Biege
Re: CVE request - coppermine gallery <1.4.26 code execution vulnerability Henri Salo
CVE request: wordpress < 2.9.2 information leak Hanno Böck
Re: CVE request: wordpress < 2.9.2 information leak Steven M. Christey

Tuesday, 23 February

CVE assignment notification -- CVE-2010-0426 -- sudo improper pseudocommands file path check Jan Lieskovsky
Re: CVE assignment notification -- CVE-2010-0426 -- sudo improper pseudocommands file path check Todd C. Miller
CVE request: typo3 below 4.3.2 and 4.2.12 Authentication bypass, 2x XSS, Information disclosure Hanno Böck
CVE assignment notification -- CVE-2010-0427 -- sudo fails to reset group permissions if runas_default set Jan Lieskovsky
kernel: execution possible in non-executable mappings in recent 2.6 kernels (SPARC only) Eugene Teo
kernel: RTO (Retransmission Timeouts) Remote DoS Eugene Teo
CVE request: kernel: NFS DoS related to "automount" symlinks Eugene Teo

Wednesday, 24 February

Re: CVE assignment notification -- CVE-2010-0427 -- sudo fails to reset group permissions if runas_default set Jamie Strandboge
Re: CVE assignment notification -- CVE-2010-0427 -- sudo fails to reset group permissions if runas_default set Jan Lieskovsky

Thursday, 25 February

incorrect description for CVE-2010-0412 systemtap flaw Vincent Danen
Re: Re: CVE assignment notification -- CVE-2010-0426 -- sudo improper pseudocommands file path check Jamie Strandboge
Re: CVE assignment notification -- CVE-2010-0427 -- sudo fails to reset group permissions if runas_default set Jamie Strandboge

Monday, 01 March

CVE request: kernel: dvb-core: ULE decapsulation DoS Eugene Teo

Tuesday, 02 March

CVE-2009-3297 samba/ncpfs/fuse issues granted individual 2010 CVE names? Vincent Danen
Re: CVE-2009-3297 samba/ncpfs/fuse issues granted individual 2010 CVE names? Vincent Danen

Wednesday, 03 March

CVE request: kernel: NFS: Fix an Oops when truncating a file Eugene Teo
[cansecwest] Advanced PHP Hacking Laurent OUDOT at TEHTRI-Security
CFPs and con invitations on the list (was: [cansecwest] Advanced PHP Hacking) Solar Designer
Re: CVE-2009-3297 samba/ncpfs/fuse issues granted individual 2010 CVE names? Steven M. Christey
OpenSSL (with KRB5) remote crash - CVE-2010-0433 Tomas Hoger
CVE Request: libesmtp does not check NULL bytes in commonName Kees Cook
Re: CVE-2009-3297 samba/ncpfs/fuse issues granted individual 2010 CVE names? Vincent Danen
Re: CVE request - kernel: ip6_dst_lookup_tail() NULL pointer dereference Eugene Teo

Thursday, 04 March

kernel: hvc_console: Fix race between hvc_close and hvc_remove Eugene Teo
Re: CVE request - kernel: ip6_dst_lookup_tail() NULL pointer dereference Josh Bressers
Re: Samba symlink 0day flaw Ludwig Nussel

Friday, 05 March

Re: CVE Request: gnome-screensaver termination by pressing "Enter" Marcus Meissner
Re: Samba symlink 0day flaw Steven M. Christey

Saturday, 06 March

Re: WANTED: mikmod patches Kees Cook

Monday, 08 March

CVE Request -- Drupal v6.16 / v5.22 SA-CORE-2010-001 Jan Lieskovsky

Tuesday, 09 March

Re: CVE Request -- cURL/libCURL 7.20.0 Jan Lieskovsky
CVE Request: postgresql integer overflow in hash table size calculation Vincent Danen
Re: CVE Request: libesmtp does not check NULL bytes in commonName Jan Lieskovsky
CVE Request -- MediaWiki - v1.15.2 Jan Lieskovsky

Wednesday, 10 March

phpmyvisites 2.3 Henri Salo
CVE Request -- SpamAssassin Mail Filter -- arbitrary shell command injection (priv esc) Jan Lieskovsky
Re: CVE Request: libesmtp does not check NULL bytes in commonName Ludwig Nussel
CVE Request -- aMSN -- improper SSL certificate validation (MITM) Jan Lieskovsky
Re: phpmyvisites 2.3 Anthon Pang
CVE Request -- Dovecot v1.2.11 -- DoS (excessive CPU use) by processing email with huge header Jan Lieskovsky
CVE Request: DeviceKit privilege escalation via pluggable storage device labels Vincent Danen
CVE Request: ViewVC 1.1.4 / 1.0.10 -- XSS via user-provided query form input Reed Loden
Re: CVE Request: libesmtp does not check NULL bytes in commonName Brian Stafford

Thursday, 11 March

CVE id request: mydms Nico Golde
Re: CVE Request: libesmtp does not check NULL bytes in commonName Ludwig Nussel
Re: CVE Request: libesmtp does not check NULL bytes in commonName Ludwig Nussel
Re: CVE Request: libesmtp does not check NULL bytes in commonName Brian Stafford
Re: CVE Request: libesmtp does not check NULL bytes in commonName Brian Stafford
Re: CVE Request: libesmtp does not check NULL bytes in commonName Geoff Keating
Re: CVE Request: libesmtp does not check NULL bytes in commonName Joe Orton
Re: CVE request: kernel: connector security bypass dann frazier
CVE-2010-0727 kernel: gfs/gfs2 locking code DoS flaw Eugene Teo
CVE-2010-0729 kernel: ia64: ptrace: peek_or_poke requests miss ptrace_check_attach() Eugene Teo

Friday, 12 March

CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoS Jan Lieskovsky
Re: [Drbd-dev] [oss-security] CVE request: kernel: connector security bypass dann frazier
CVE-2010-0397: NULL pointer dereference in PHP's xmlrpc extension Raphael Geissert
Re: [Drbd-dev] [oss-security] CVE request: kernel: connector security bypass Lars Ellenberg
Call for papers: ISP-10, USA, July 2010 James Heralds
Re: CFPs and con invitations on the list Solar Designer
Re: CFPs and con invitations on the list Jon Oberheide

Sunday, 14 March

[HITB-Announce] HITBSecConf2010 - Dubai Agenda Released Hafez Kamal
Re: CFPs and con invitations on the list Solar Designer

Monday, 15 March

Re: CFPs and con invitations on the list Josh Bressers
Re: CVE Request: libesmtp does not check NULL bytes in commonName Brian Stafford

Tuesday, 16 March

Re: CVE Request: libesmtp does not check NULL bytes in commonName Ludwig Nussel
Re: CVE Request -- MediaWiki - v1.15.2 Nico Golde
Re: CVE Request: libesmtp does not check NULL bytes in commonName Brian Stafford
Re: CVE Request: libesmtp does not check NULL bytes in commonName ArkanoiD
Re: CVE Request: libesmtp does not check NULL bytes in commonName Ludwig Nussel
Re: CVE Request: libesmtp does not check NULL bytes in commonName Joe Orton
Re: CVE Request: libesmtp does not check NULL bytes in commonName Peter Sylvester
Re: CVE Request: libesmtp does not check NULL bytes in commonName ArkanoiD
Re: Re: CVE Request: gnome-screensaver termination by pressing "Enter" Vincent Danen
Re: CVE Request: postgresql integer overflow in hash table size calculation Vincent Danen
Re: CVE Request -- cURL/libCURL 7.20.0 Vincent Danen
Re: CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoS Vincent Danen
Re: CVE Request: libesmtp does not check NULL bytes in commonName Brian Stafford
Re: CVE Request: ViewVC 1.1.4 / 1.0.10 -- XSS via user-provided query form input Vincent Danen
Re: CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoS Tomas Hoger
Re: CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoS Vincent Danen
CVE-2009-4271 kernel: 32bit process on 64bit system DoS Eugene Teo
CVE-2010-0008 kernel: sctp remote denial of service Eugene Teo

Wednesday, 17 March

Re: CVE Request: libesmtp does not check NULL bytes in commonName Brian Stafford
Re: CVE Request: libesmtp does not check NULL bytes in commonName Ludwig Nussel
Re: CVE Request: libesmtp does not check NULL bytes in commonName ArkanoiD
Re: CVE Request: libesmtp does not check NULL bytes in commonName Ludwig Nussel
Re: CVE Request: libesmtp does not check NULL bytes in commonName Brian Stafford
Re: CVE-2009-4271 kernel: 32bit process on 64bit system DoS Marcus Meissner
Re: CVE Request: libesmtp does not check NULL bytes in commonName ArkanoiD
CVE id request: ikiwiki Nico Golde
Re: CVE Request: libesmtp does not check NULL bytes in commonName Emily Ratliff
CVE Request -- Transmission v1.92 Jan Lieskovsky

Thursday, 18 March

Re: CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoS Steven M. Christey
Re: CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoS Vincent Danen

Friday, 19 March

CVE Request -- Sahana -- v0.6.2.2 -- Authentication bypass via "acl_enable_acl" URLs Jan Lieskovsky

Monday, 22 March

CVE request: kernel: bluetooth: potential bad memory access with sysfs files Eugene Teo
[HITB-Announce] HITBSecConf2009 - Malaysia Videos Released! Hafez Kamal
CVE requests 6x kernel vulns still pending Eugene Teo

Tuesday, 23 March

Re: CVE requests 6x kernel vulns still pending Steven M. Christey
Re: CVE requests 6x kernel vulns still pending Eugene Teo
kernel: bluetooth: Fix kernel crash on L2CAP stress tests Eugene Teo
Re: CVE Request -- MediaWiki - v1.15.2 Henri Salo

Wednesday, 24 March

[HITB-Announce] HITBSecConf2009 - Malaysia Videos Released! *Correction* Hafez Kamal
Re: CFPs and con invitations on the list Solar Designer

Thursday, 25 March

Re: CFPs and con invitations on the list Josh Bressers
Hackito Ergo Sum Conference (Paris 8-10 April 2010) : Schedule Jonathan Brossard
Re: CFPs and con invitations on the list Matthias Andree
Re: CFPs and con invitations on the list Jonathan Brossard

Friday, 26 March

Re: CFPs and con invitations on the list Josh Bressers
Re: CVE Request -- SpamAssassin Mail Filter -- arbitrary shell command injection (priv esc) Steven M. Christey

Sunday, 28 March

CVE request: kernel: ipv6: skb is unexpectedly freed (remote DoS) Eugene Teo

Monday, 29 March

OpenSSL: CVE-2010-0740 and CVE-2009-3245 appear to be dupes Florian Weimer
CVE Request -- Quake II Server -- two security issues affecting also Alien Arena Jan Lieskovsky
CVE-2010-0741 qemu: Improper handling of erroneous data provided by Linux virtio-net driver Petr Matousek
RE: CVE Request -- Quake II Server -- two security issues affecting also Alien Arena Richard Stanway
Re: OpenSSL: CVE-2010-0740 and CVE-2009-3245 appear to be dupes Florian Weimer
CVE Request: ViewVC 1.1.5 / 1.0.11 -- XSS via user-provided 'search_re' input Reed Loden
CVE request: kernel: tipc: Fix oops on send prior to entering networked mode Eugene Teo

Tuesday, 30 March

Re: CVE Request: ViewVC 1.1.5 / 1.0.11 -- XSS via user-provided 'search_re' input Secunia Research
Re: CVE Request: ViewVC 1.1.5 / 1.0.11 -- XSS via user-provided 'search_re' input Reed Loden
Re: CVE Request: ViewVC 1.1.5 / 1.0.11 -- XSS via user-provided 'search_re' input Reed Loden
Re: CVE Request: ViewVC 1.1.5 / 1.0.11 -- XSS via user-provided 'search_re' input Steven M. Christey
Re: CVE request: kernel: tipc: Fix oops on send prior to entering networked mode Steven M. Christey
Re: CVE request: kernel: ipv6: skb is unexpectedly freed (remote DoS) Steven M. Christey
Re: CVE Request -- MediaWiki - v1.15.2 Steven M. Christey
Re: CVE Request -- Sahana -- v0.6.2.2 -- Authentication bypass via "acl_enable_acl" URLs Steven M. Christey
Re: CVE Request: libesmtp does not check NULL bytes in commonName Steven M. Christey
Re: CVE id request: ikiwiki Steven M. Christey
Re: phpmyvisites 2.3 Steven M. Christey
Re: CVE request: kernel: tipc: Fix oops on send prior to entering networked mode Eugene Teo
Re: CVE request: kernel: ipv6: skb is unexpectedly freed (remote DoS) Eugene Teo
Re: phpmyvisites 2.3 Anthon Pang

Wednesday, 31 March

iscsitarget/scsi-target-tuils format string CVE assignment Josh Bressers
CVE Request -- Apache CouchDB v.0.11.0 -- timing attacks flaw Jan Lieskovsky
Re: CVE Request -- Apache CouchDB v.0.11.0 -- timing attacks flaw Alex Legler

Previous period

Next period