oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: CVE Request: prosody DoS, djabberd external entity injection

From: Josh Bressers <bressers () redhat com>
Date: Wed, 15 Jun 2011 09:46:15 -0400 (EDT)

----- Original Message -----

Hi,

As far as I know, there's no CVE for these ones yet. Could you assign
one?
* prosody billion laughs DoS:
http://blog.prosody.im/prosody-0-8-1-released/


Use CVE-2011-2205 for this.



* djabberd external entity injection:
http://groups.google.com/group/djabberd/browse_thread/thread/47974331c37e54c5#



Use CVE-2011-2206

Thanks.

-- 
    JB
Previous By Date Next
Previous By Thread Next

Current thread: