oss-sec mailing list archives
Re: Node.js "serve-static" module Open Redirect
From: cve-assign () mitre org
Date: Sat, 17 Jan 2015 17:58:46 -0500 (EST)
On Wed, 14 Jan 2015, Adam Baldwin wrote:
Yes we post to mitre for CVE. We're short staffed so slow. We can try and cross post to oss-security too in the future.Adam BaldwinOn Jan 13, 2015, at 8:56 PM, Kurt Seifried <kseifried () redhat com> wrote: https://nodesecurity.io/advisories/serve-static-open-redirect Says CVE pending, no idea where/whom they asked, I assume Mitre? Also if nodesecurity.io could post these advisories to oss-security that would be helpful, thanks! -- Kurt Seifried -- Red Hat -- Product Security -- Cloud PGP A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993
Use CVE-2015-1164. --- CVE assignment team, MITRE CVE Numbering Authority M/S M300 202 Burlington Road, Bedford, MA 01730 USA [ PGP key available through http://cve.mitre.org/cve/request_id.html ]
Current thread:
- Node.js "serve-static" module Open Redirect Kurt Seifried (Jan 13)
- Re: Node.js "serve-static" module Open Redirect Adam Baldwin (Jan 14)
- Re: Node.js "serve-static" module Open Redirect cve-assign (Jan 17)
- Re: Node.js "serve-static" module Open Redirect Adam Baldwin (Jan 14)