oss-sec mailing list archives

Re: CVE id request: comix

From: Nico Golde <oss-security+ml () ngolde de>
Date: Tue, 1 Apr 2008 00:18:59 +0200

Hi Steven,
* Steven M. Christey <coley () linus mitre org> [2008-04-01 00:09]:

On Mon, 31 Mar 2008, Nico Golde wrote:

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=462840

I confirmed this using comix\"\;echo\ owned\>bla\;ls\ \"
as a simple reroducer.


Use CVE-2008-1568


Thanks

What about the comicthumb in Message #10 - if that's part of comix, I'd
MERGE with CVE-2008-1568.


Yes that seems to be a script part of the comix package.
Kind regards
Nico
-- 
Nico Golde - http://www.ngolde.de - nion () jabber ccc de - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.

Attachment: _bin
Description:

Current thread:

Re: CVE id request: comix Nico Golde (Mar 31)
- <Possible follow-ups>
- Re: CVE id request: comix Tomas Hoger (Apr 01)
  - Re: CVE id request: comix Nico Golde (Apr 01)