oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: CVE id request: python-virtualenv

From: Kurt Seifried <kseifried () redhat com>
Date: Mon, 19 Dec 2011 10:35:50 -0700

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 12/19/2011 09:39 AM, Nico Golde wrote:

Hi,
* Kurt Seifried <kseifried () redhat com> [2011-12-19 17:38]:


On 12/19/2011 09:21 AM, Nico Golde wrote:

An insecure /tmp file handling was found in python-virtualenv:
https://bitbucket.org/ianb/virtualenv/changeset/8be37c509fe5o

Can someone assign a CVE id for this?

Link is 404


Sorry, c&p mistake:
https://bitbucket.org/ianb/virtualenv/changeset/8be37c509fe5

Cheers
Nico

Please use CVE-2011-4617 for this issue.

- -- 

- -Kurt Seifried / Red Hat Security Response Team
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (GNU/Linux)
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=fJiE
-----END PGP SIGNATURE-----
Previous By Date Next
Previous By Thread Next

Current thread: