oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: CVE Request: libsdp

From: Josh Bressers <bressers () redhat com>
Date: Tue, 16 Nov 2010 12:56:48 -0500 (EST)
----- "Huzaifa Sidhpurwala" <huzaifas () redhat com> wrote:


Leif Nixon reported that libsdp is vulnerable to insecure log file
handling. This is fixed by the latest libsdp version available at:

http://www.openfabrics.org/downloads/libsdp/libsdp-1.1.105-0.4.g1b9b996.tar.gz

More details are available in Red Hat bugzilla:
https://bugzilla.redhat.com/show_bug.cgi?id=647941

Can a CVE id be please assigned to this flaw?



Please use
CVE-2010-4173

Thanks.

-- 
    JB
Previous By Date Next
Previous By Thread Next

Current thread: