oss-sec mailing list archives

Re: CVE request: vulnerability in FreeRADIUS (OCSP)

From: Tomas Hoger <thoger () redhat com>
Date: Tue, 19 Jul 2011 15:13:00 +0200

On Tue, 19 Jul 2011 12:19:57 +0200 dfncert () dfn-cert de wrote:

Are the published information sufficient to get a CVE number for the
issue?


Was your intention to request a CVE for a still-to-remain-non-public
issue to be disclosed in the future, or actually make the issue public?

I'm CCing upstream (Alan DeKok), as it seems this thread may be giving
out more info than expected.  Alan, this is part of the following
discussion:

http://thread.gmane.org/gmane.comp.security.oss.general/5489

-- 
Tomas Hoger / Red Hat Security Response Team

Current thread:

Re: CVE request: vulnerability in FreeRADIUS (OCSP), (continued)
- - Re: CVE request: vulnerability in FreeRADIUS (OCSP) dfncert (Jul 18)
    - Re: CVE request: vulnerability in FreeRADIUS (OCSP) Stefan Behte (Jul 18)
    - Re: CVE request: vulnerability in FreeRADIUS (OCSP) Solar Designer (Jul 18)
    - Re: CVE request: vulnerability in FreeRADIUS (OCSP) Tim Zingelman (Jul 18)
    - Re: CVE request: vulnerability in FreeRADIUS (OCSP) Solar Designer (Jul 19)
    - Re: CVE request: vulnerability in FreeRADIUS (OCSP) Tim Zingelman (Jul 19)
    - *BSD security contacts (was: CVE request: vulnerability in FreeRADIUS (OCSP)) Solar Designer (Jul 19)
    - Re: *BSD security contacts (was: CVE request: vulnerability in FreeRADIUS (OCSP)) Tim Zingelman (Jul 21)
    - Re: *BSD security contacts Solar Designer (Jul 21)
    - Re: CVE request: vulnerability in FreeRADIUS (OCSP) dfncert (Jul 19)
    - Re: CVE request: vulnerability in FreeRADIUS (OCSP) Tomas Hoger (Jul 19)
    - Re: CVE request: vulnerability in FreeRADIUS (OCSP) dfncert (Jul 19)
    - Re: CVE request: vulnerability in FreeRADIUS (OCSP) Josh Bressers (Jul 20)
    - Re: CVE request: vulnerability in FreeRADIUS (OCSP) Solar Designer (Jul 19)