oss-sec mailing list archives

CVE id request: qemu

From: Steffen Joeris <steffen.joeris () skolelinux de>
Date: Mon, 13 Oct 2008 23:14:04 +1100

Hi

I think this one is still unassigned.
The qemu-make-debian-root script is prone to a symlink attack.
I am not sure, if other vendors use it, but I guess it can't hurt to get a CVE 
id assigned. :)

Debian Bugreport:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496394

Cheers
Steffen

Attachment: signature.asc
Description: This is a digitally signed message part.

Current thread:

CVE id request: qemu Steffen Joeris (Oct 13)
- Re: CVE id request: qemu Steven M. Christey (Oct 14)