oss-sec mailing list archives
Being vulnerable to POODLE
From: Sevan Janiyan <venture37 () geeklan co uk>
Date: Sat, 26 Dec 2015 07:28:52 +0000
Hi, If you have a piece of software which is vulnerable to POODLE, should a CVE be requested for it or should CVE-2014-3566 just be referenced in any advisories published? It turns out that CoovaChilli[1] is vulnerable to POODLE & I'd like to follow the correct procedure regarding disclosure. There's a fix pending due to needing further testing at which point an advisory will be published with the necessary details. Regards, Sevan [1] http://coova.github.io/CoovaChilli/
Current thread:
- Being vulnerable to POODLE Sevan Janiyan (Dec 26)
- Re: Being vulnerable to POODLE gremlin (Dec 26)
- Re: Being vulnerable to POODLE Gsunde Orangen (Dec 26)
- Re: Being vulnerable to POODLE Sevan Janiyan (Dec 26)
- Re: Being vulnerable to POODLE Gsunde Orangen (Dec 26)
- Re: Being vulnerable to POODLE Florian Weimer (Dec 28)
- Re: Being vulnerable to POODLE Sevan Janiyan (Dec 28)
- Re: Being vulnerable to POODLE Florian Weimer (Dec 28)
- Re: Being vulnerable to POODLE Sevan Janiyan (Dec 29)
- Re: Being vulnerable to POODLE Sevan Janiyan (Dec 28)
- Re: Being vulnerable to POODLE gremlin (Dec 26)