oss-sec mailing list archives

Re: CVE requests: freebsd kernel/tesseract/xinha/proftpd

From: Josh Bressers <bressers () redhat com>
Date: Wed, 23 Feb 2011 16:10:09 -0500 (EST)

Steve,

Can MITRE handle this one. It's getting old and I'm starting to think
I won't be able to get to it before the week ends.

Thanks.

-- 
    JB

----- Original Message -----

Hi,
Please assign CVE IDs for the following issues from the Debian
Security Tracker:

1. FreeBSD kernel: local DoS
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=613312
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=611476
http://www.exploit-db.com/exploits/16064/
http://svn.debian.org/wsvn/glibc-bsd/branches/squeeze/kfreebsd-8/debian/patches/000_tcp_usrreq.diff

2. Xinha: Multiple vulnerabilities
(The code is included in a few web apps, e.g. serendipity, openacs or
dotlrn)
http://secunia.com/advisories/40669/

3. tesseract: Insecure temp file handling
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=612032

4. proftpd mod_sftp integer overflow
http://bugs.proftpd.org/show_bug.cgi?id=3586
http://www.exploit-db.com/exploits/16129/

Cheers,
Moritz

Current thread:

CVE requests: freebsd kernel/tesseract/xinha/proftpd Moritz Muehlenhoff (Feb 21)
- Re: CVE requests: freebsd kernel/tesseract/xinha/proftpd Josh Bressers (Feb 23)
- Re: CVE requests: freebsd kernel/tesseract/xinha/proftpd Steven M. Christey (Mar 02)