oss-sec: by author

• RSS Feed
• About List
• All Lists

Previous period

Next period

376 messages starting Jun 29 10 and ending Apr 13 10
Date index | Thread index | Author index

akuster

Re: CVE request - kernel: cifs: Fix a kernel BUG with remote OS/2 server akuster (Jun 29)
Re: CVE request - kernel: cifs: Fix a kernel BUG with remote OS/2 server akuster (Jun 30)
Re: kernel: ethtool: kernel buffer overflow in ETHTOOL_GRXCLSRLALL akuster (Jun 29)

Alex Legler

Re: CVE request: UnrealIRCd 3.2.8.1 source code contained a backdoor allowing for remote command execution Alex Legler (Jun 14)
CVE request: UnrealIRCd 3.2.8.1 source code contained a backdoor allowing for remote command execution Alex Legler (Jun 12)
CVE request: VLC <1.0.6 Multiple issues Alex Legler (Apr 22)

Andrea Di Pasquale

ArpON (Arp handler inspectiON) 2.0 released! Andrea Di Pasquale (Jun 08)

Anthon Pang

CVE Request - Piwik 0.5.5 - XSS vulnerability Anthon Pang (May 05)

Bernhard R. Link

Re: CVE request: ghostscript and gv Bernhard R. Link (May 29)
Re: CVE request: ghostscript and gv Bernhard R. Link (May 30)

Daniele Bianco

[oCERT-2010-001] multiple http client unexpected download filename vulnerability Daniele Bianco (May 17)

Daniel Friesel

CVE request: feh Daniel Friesel (Jun 25)

dann frazier

CVE Request - kernel: put_tty_queue NULL pointer deref dann frazier (Jun 14)
Re: CVE-2010-0727 kernel: gfs/gfs2 locking code DoS flaw dann frazier (Apr 21)
Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove dann frazier (Jun 30)
CVE Request [was Re: [oss-security] kernel: execution possible in non-executable mappings in recent 2.6 kernels (SPARC only)] dann frazier (May 04)

Dan Poltawski

CVS request - Moodle Dan Poltawski (Apr 27)

Dan Rosenberg

Re: CVE request: lxr Dan Rosenberg (May 03)
Re: CVE request: lxr Dan Rosenberg (May 14)
Re: CVE Assignment (gnustep) Dan Rosenberg (May 07)
CVE request: GNU nano (minor) Dan Rosenberg (Apr 14)
CVE request - kernel: btrfs: prevent users from setting ACLs on files they do not own Dan Rosenberg (Jun 11)
CVE requests: LibTIFF Dan Rosenberg (Jun 23)
Re: CVE requests: LibTIFF Dan Rosenberg (Jun 29)
Re: kernel: btrfs: check for read permission on src file in the clone ioctl Dan Rosenberg (May 18)
Re: CVE request: lxr Dan Rosenberg (May 03)
Re: CVE request: lxr Dan Rosenberg (May 06)
Re: CVE requests: LibTIFF Dan Rosenberg (Jun 29)
Re: CVE requests: LibTIFF Dan Rosenberg (Jun 24)
Re: CVE requests: LibTIFF Dan Rosenberg (Jun 30)
Re: CVE assignment: ghostscript stack-based overflow Dan Rosenberg (May 11)

Emilio Pozuelo Monfort

Fwd: emesene preditable temporary filename Emilio Pozuelo Monfort (May 29)

Eren Türkay

Re: CVE request: kernel: tty: release_one_tty() forgets to put pids Eren Türkay (Apr 26)
Re: ClamAV small issues Eren Türkay (Apr 09)
Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities (3.3.x) Eren Türkay (May 27)
Re: ClamAV small issues Eren Türkay (Apr 09)
Month of PHP Security 2010 Issues Eren Türkay (May 11)
CVE Request: JIRA Issues Eren Türkay (Apr 16)
Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities (3.3.x) Eren Türkay (May 28)

Eugene Teo

Couple of kernel issues Eugene Teo (Apr 13)
CVE request - kernel: ext4: Make sure the MOVE_EXT ioctl can't overwrite append-only files Eugene Teo (Jun 06)
Re: CVE-2010-1173 kernel: skb_over_panic resulting from multiple invalid parameter errors Eugene Teo (Apr 28)
Re: CVE request - kernel: cifs: Fix a kernel BUG with remote OS/2 server Eugene Teo (Jun 30)
CVE Request: kernel: ethtool: kernel buffer overflow in ETHTOOL_GRXCLSRLALL Eugene Teo (Jun 29)
CVE-2010-1173 kernel: skb_over_panic resulting from multiple invalid parameter errors Eugene Teo (Apr 28)
Re: CVE request - Linux Kernel KGDB/ppc issue Eugene Teo (Apr 29)
Re: CVE-2010-1146 kernel: reiserfs priv escalation Eugene Teo (Apr 09)
Re: CVE request: UnrealIRCd 3.2.8.1 source code contained a backdoor allowing for remote command execution Eugene Teo (Jun 14)
CVE-2010-0730 xen: emulator instruction decoding inconsistency Eugene Teo (May 06)
Re: CVE request: kernel: tty: release_one_tty() forgets to put pids Eugene Teo (Apr 27)
kernel: ethtool: kernel buffer overflow in ETHTOOL_GRXCLSRLALL Eugene Teo (Jun 28)
CVE request - gfs2 kernel issue Eugene Teo (Apr 26)
CVE request - kernel: nfsd: fix vm overcommit crash Eugene Teo (May 25)
Re: CVE request - Linux Kernel KGDB/ppc issue Eugene Teo (Apr 28)
kernel: btrfs: check for read permission on src file in the clone ioctl Eugene Teo (May 18)
Re: CVE request - kernel: GFS2: The setflags ioctl() doesn't check file ownership Eugene Teo (May 25)
CVE request - kernel: GFS2: The setflags ioctl() doesn't check file ownership Eugene Teo (May 24)
CVE-2010-1146 kernel: reiserfs priv escalation Eugene Teo (Apr 08)
kernel: l2tp: Fix oops in pppol2tp_xmit Eugene Teo (Jun 22)
Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove Eugene Teo (Apr 18)
Re: CVE request - kernel: btrfs: prevent users from setting ACLs on files they do not own Eugene Teo (Jun 13)
Re: CVE request - kernel: cifs: Fix a kernel BUG with remote OS/2 server Eugene Teo (Jun 29)
Re: CVE request: kernel: cifs: cifs_create() NULL pointer dereference Eugene Teo (Apr 05)
Re: CVE request - kernel: btrfs: prevent users from setting ACLs on files they do not own Eugene Teo (Jun 13)
Re: CVE request: kernel: tty: release_one_tty() forgets to put pids Eugene Teo (Apr 14)
Re: CVE request: kernel: cifs: cifs_create() NULL pointer dereference Eugene Teo (May 18)
kernel: thinkpad-acpi: lock down video output state access Eugene Teo (Jun 22)
CVE request - kernel: find_keyring_by_name() can gain the freed keyring Eugene Teo (Apr 26)
Re: CVE request - kernel: nfsd: fix vm overcommit crash Eugene Teo (May 26)
CVE request: kernel: timekeeping: Prevent oops when GENERIC_TIME=n Eugene Teo (Jun 22)
CVE request - kernel: cifs: Fix a kernel BUG with remote OS/2 server Eugene Teo (Jun 28)
CVE request: kernel: tty: release_one_tty() forgets to put pids Eugene Teo (Apr 14)
CVE request: kernel: cifs: cifs_create() NULL pointer dereference Eugene Teo (Apr 05)
CVE-2010-2070 kernel-xen: ia64-xen: unset be from the task psr Eugene Teo (Jun 10)
Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove Eugene Teo (Apr 18)
Re: CVE Request - kernel: put_tty_queue NULL pointer deref Eugene Teo (Jun 14)
CVE request - kernel: xfs swapext ioctl issue Eugene Teo (Jun 17)

Florian Streibelt

Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface Florian Streibelt (Jun 23)

Florian Weimer

Re: CVE request: fetchmail 4.6.3...6.3.16 DoS in -v -v mode in multibyte locales on invalid input Florian Weimer (Apr 19)
Re: CVE request: ghostscript and gv Florian Weimer (May 30)
Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability Florian Weimer (May 17)
CVE request: aircrack-ng EAPOL buffer overflow Florian Weimer (Apr 14)

Giuseppe Iuculano

CVE-2009-4824 is a duplicate of CVE-2009-3236 Giuseppe Iuculano (May 28)
Re: Debian Moin Question Giuseppe Iuculano (Apr 05)

Greg KH

Re: CVE request: kernel: cifs: cifs_create() NULL pointer dereference Greg KH (May 18)

Hafez Kamal

[HITB-Announce] HITBSecConf2010 - Dubai - Presentation Materials Hafez Kamal (Apr 22)
[HITB-Announce] FINAL CALL - CFP for HITBSecConf2010 Amsterdam Hafez Kamal (Apr 08)
[HITB-Announce] HITBSecConf2010 - Malaysia Call for Papers Hafez Kamal (May 19)
[HITB-Announce] HITB eZine Issue 002 out now! Hafez Kamal (Apr 22)

Hanno Böck

CVE request: joomla before 1.5.18 Hanno Böck (May 29)
CVE request: phorum < 5.2.15 backend XSS Hanno Böck (May 16)
CVE request: Mediawiki below 1.15.4 / 1.16.0beta3 Hanno Böck (May 28)
MOPS and CVEs? Hanno Böck (May 07)
CVE request: typo3 remote command execution Hanno Böck (Apr 10)
CVE request: Java webstart remote code execution Hanno Böck (Apr 10)
CVE request: joomla <= 1.5.15 code upload, information leak, session fixation, unauthorized access (was Fwd: Joomla! Security News) Hanno Böck (Apr 26)
CVE request: phpbb 3.0.7 and before 3.0.5 Hanno Böck (May 16)
CVE request: punbb before 1.3.4 xss Hanno Böck (Jun 14)
Re: CVE request: phpbb 3.0.7 and before 3.0.5 Hanno Böck (May 19)

Henri Salo

wafp insecure temporary directory Henri Salo (Apr 27)
Re: CVE Request -- Drupal v6.16 / v5.22 SA-CORE-2010-001 Henri Salo (Jun 28)
CVE request - pyftpd insecure usage of temporary directory Henri Salo (Jun 13)
Re: CVE request: lxr Henri Salo (May 03)
Re: CVE request: simplemachinesforum Henri Salo (Jun 30)
CVE request - pyftpd default username and password vulnerability Henri Salo (Jun 13)
Re: CVE request: lxr Henri Salo (May 03)
CVE request: makepasswd, Default settings generate insecure passwords Henri Salo (Jun 27)
Re: Searching for vuln apps for testing free code review tools Henri Salo (Apr 26)
Virii in the wild Henri Salo (Jun 04)

Hui Zhu

Re: CVE-2010-1173 kernel: skb_over_panic resulting from multiple invalid parameter errors Hui Zhu (Apr 28)
CVE request - Linux Kernel KGDB/ppc issue Hui Zhu (Apr 28)
Re: CVE-2010-1173 kernel: skb_over_panic resulting from multiple invalid parameter errors Hui Zhu (Apr 28)

Jamie Strandboge

Re: Re: CVE request: irssi 0.8.15 Jamie Strandboge (Apr 17)
ClamAV small issues Jamie Strandboge (Apr 06)
CVE request -- memcached Jamie Strandboge (Apr 08)
CVE Request: clamav crash via malformed PDF Jamie Strandboge (May 21)
Re: clamav null pointer dereference Jamie Strandboge (May 21)
CVE Request: off by one DoS in pe_icons.c Jamie Strandboge (May 21)
KDENetwork vulnerabilities Jamie Strandboge (May 13)
Re: CVE request -- memcached Jamie Strandboge (Apr 08)

Jan Lieskovsky

CVE Request -- perl v5.8.* -- stack overflow by processing certain regex (Gentoo BTS#313565 / RH BZ#580605) Jan Lieskovsky (Apr 08)
Re: CVE Request -- Abcm2ps v5.9.12 -- multiple unspecified vulnerabilities Jan Lieskovsky (Apr 08)
CVE Request -- Abcm2ps v5.9.12 -- multiple unspecified vulnerabilities Jan Lieskovsky (Apr 08)
CVE Request -- rpcbind -- Insecure (predictable) temporary file use Jan Lieskovsky (Jun 03)
CVE Request -- Python-Mako (prior v0.3.4): Improper escaping of single quotes in escape.cgi (XSS) Jan Lieskovsky (Jun 30)
CVE-2010-1974 reject request (dupe of CVE-2010-1168) and CVE-2010-1447 description modification request Jan Lieskovsky (May 20)
CVE Request -- libnids v1.24 -- Null pointer dereference Jan Lieskovsky (Apr 01)
CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface Jan Lieskovsky (Jun 23)
CVE Request -- Cacti v0.8.7 -- three security fixes Jan Lieskovsky (May 24)
CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775) Jan Lieskovsky (Jun 02)
CVE Request -- OpenDCHub v0.8.1 -- Stack overflow by handling a specially-crafted MyINFO message Jan Lieskovsky (Apr 03)
CVE Request -- Beanstalkd (prior v1.4.6) -- Improper sanitization of job body (job payload data) Jan Lieskovsky (Jun 02)
Re: CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775) Jan Lieskovsky (Jun 02)
CVE Request -- Plone -- arbitrary HTML code injection in safe_html Jan Lieskovsky (Jun 21)
CVE Request -- Zabbix v1.8.2 and v.1.6.9 Jan Lieskovsky (Apr 01)
CVE Request -- udisks v1.0.0 -- (serious) information disclosure Jan Lieskovsky (Apr 06)
CVE Request -- libpng v1.4.3 and v1.2.44 -- memory leak while processing PNG image with malformed sCAL chunks Jan Lieskovsky (Jun 28)
Re: CVE Request -- Cacti v0.8.7 -- three security fixes Jan Lieskovsky (Jun 01)

Josh Bressers

Re: CVE Request -- Dovecot v1.2.11 -- DoS (excessive CPU use) by processing email with huge header Josh Bressers (Apr 01)
Re: CVE Request -- Beanstalkd (prior v1.4.6) -- Improper sanitization of job body (job payload data) Josh Bressers (Jun 03)
Re: CVE Request: cacti SQL injection in template_export Josh Bressers (Apr 26)
Re: CVE Request -- Transmission v1.92 Josh Bressers (Apr 01)
Re: CVE request: zonecheck Josh Bressers (Jun 01)
Re: CVE request: makepasswd, Default settings generate insecure passwords Josh Bressers (Jun 28)
Re: CVE request: aircrack-ng EAPOL buffer overflow Josh Bressers (Apr 14)
Re: CVE Request -- PHP strrchr() Interruption Information Leak Vulnerability Josh Bressers (Jun 30)
Re: CVE Request -- udisks v1.0.0 -- (serious) information disclosure Josh Bressers (Apr 07)
Re: A mysql flaw. Josh Bressers (May 07)
Re: CVE request: irssi 0.8.15 Josh Bressers (Apr 13)
Re: CVE request - kernel: nfsd: fix vm overcommit crash Josh Bressers (May 26)
Re: CVE request: phpbb 3.0.7 and before 3.0.5 Josh Bressers (May 18)
Re: CVS request - Moodle Josh Bressers (Apr 29)
Re: CVE request - kernel: GFS2: The setflags ioctl() doesn't check file ownership Josh Bressers (May 25)
Re: CVE request - pyftpd default username and password vulnerability Josh Bressers (Jun 14)
Re: CVE Request -- Cacti v0.8.7 -- three security fixes Josh Bressers (May 26)
Re: CVE request - kernel: ext4: Make sure the MOVE_EXT ioctl can't overwrite append-only files Josh Bressers (Jun 09)
Re: CVE request: lxr Josh Bressers (May 14)
Re: CVE Request -- Drupal v6.16 / v5.22 SA-CORE-2010-001 Josh Bressers (Jun 28)
Re: Fwd: emesene preditable temporary filename Josh Bressers (Jun 01)
Re: CVE Request: DeviceKit privilege escalation via pluggable storage device labels Josh Bressers (Apr 01)
Re: SFCB vulnerabilities Josh Bressers (Jun 01)
Re: CVE Request -- rpcbind -- Insecure (predictable) temporary file use Josh Bressers (Jun 07)
Re: CVE request - pyftpd insecure usage of temporary directory Josh Bressers (Jun 14)
Re: CVE request: typo3 remote command execution Josh Bressers (Apr 12)
Re: CVE request: punbb before 1.3.4 xss Josh Bressers (Jun 14)
Re: CVE id request: syscp Josh Bressers (Jun 30)
Re: CVE request - sudo Josh Bressers (Apr 15)
Re: CVE request: feh Josh Bressers (Jun 28)
Re: CVE Assignment (wireshark) Josh Bressers (May 07)
Re: CVE request: kernel: tty: release_one_tty() forgets to put pids Josh Bressers (Apr 15)
Re: CVE requests: LibTIFF Josh Bressers (Jun 30)
Re: CVE request: fetchmail 4.6.3...6.3.16 DoS in -v -v mode in multibyte locales on invalid input Josh Bressers (Apr 19)
Re: CVE request: HTML Purifier Josh Bressers (Jun 30)
Re: CVE Request: w3m does not check null bytes CN/subjAltName Josh Bressers (Jun 14)
Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities Josh Bressers (May 25)
Re: CVE Request: off by one DoS in pe_icons.c Josh Bressers (May 25)
Re: CVE Request -- OpenDCHub v0.8.1 -- Stack overflow by handling a specially-crafted MyINFO message Josh Bressers (Apr 05)
Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities Josh Bressers (May 25)
Re: CVE request: XSS in python paste Josh Bressers (Jun 30)
Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface Josh Bressers (Jun 25)
Re: CVE Request: kernel: ethtool: kernel buffer overflow in ETHTOOL_GRXCLSRLALL Josh Bressers (Jun 30)
Re: CVE Request: policykit (minor) Josh Bressers (Apr 01)
Re: CVE Request -- rpcbind -- Insecure (predictable) temporary file use Josh Bressers (Jun 04)
Re: CVE request: phpbb 3.0.7 and before 3.0.5 Josh Bressers (May 18)
Re: prewikka permission bug Josh Bressers (Jun 03)
Re: CVE request: phorum < 5.2.15 backend XSS Josh Bressers (May 18)
Re: CVE Request -- perl v5.8.* -- stack overflow by processing certain regex (Gentoo BTS#313565 / RH BZ#580605) Josh Bressers (Apr 14)
Re: CVE request: joomla <= 1.5.15 code upload, information leak, session fixation, unauthorized access (was Fwd: Joomla! Security News) Josh Bressers (Apr 26)
Re: CVE request: phorum < 5.2.15 backend XSS Josh Bressers (May 18)
Re: CVE request: PHP MOPS-2010-56..60 Josh Bressers (Jun 30)
Re: CVE request - gfs2 kernel issue Josh Bressers (Apr 27)
Re: wafp insecure temporary directory Josh Bressers (Apr 27)
Re: CVE Request: moodle 1.9.8, 1.8.2 Josh Bressers (Apr 01)
Re: CVE request: kernel: timekeeping: Prevent oops when GENERIC_TIME=n Josh Bressers (Jun 25)
Re: CVE assignment: ghostscript stack-based overflow Josh Bressers (May 18)
Re: CVE Request: avahi DoS Josh Bressers (Jun 25)
Debian Moin Question Josh Bressers (Apr 05)
Re: CVE request - kernel: xfs swapext ioctl issue Josh Bressers (Jun 18)
Re: CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775) Josh Bressers (Jun 03)
Re: CVE Request -- Zabbix v1.8.2 and v.1.6.9 Josh Bressers (Apr 01)
Re: CVE request: ghostscript and gv Josh Bressers (Jun 01)
Re: CVE request: UnrealIRCd 3.2.8.1 source code contained a backdoor allowing for remote command execution Josh Bressers (Jun 14)
Re: CVE requests for mplayer/vlc and abcm2ps Josh Bressers (Jun 04)
Re: CVE Request [was Re: [oss-security] kernel: execution possible in non-executable mappings in recent 2.6 kernels (SPARC only)] Josh Bressers (May 05)
Re: CVE requests: LibTIFF Josh Bressers (Jun 30)
Re: CVE request: moodle 1.9.9/1.8.13 multiple vulnerabilities Josh Bressers (Jun 21)
CVE Assignment (gnustep) Josh Bressers (May 07)
Re: CVE request: UnrealIRCd 3.2.8.1 source code contained a backdoor allowing for remote command execution Josh Bressers (Jun 14)
Re: CVE requests: maradns, freeciv, rbot, gitolite, gource, shib, kvirc Josh Bressers (Jun 11)
Re: CVE request: GNU nano (minor) Josh Bressers (Apr 14)
Re: CVE request: irssi 0.8.15 Josh Bressers (Apr 12)
Re: CVE request: Java webstart remote code execution Josh Bressers (Apr 12)
Re: CVE Request -- libpng v1.4.3 and v1.2.44 -- memory leak while processing PNG image with malformed sCAL chunks Josh Bressers (Jun 28)
Re: CVE Request - Piwik 0.5.5 - XSS vulnerability Josh Bressers (May 05)
Re: CVE request - kernel: find_keyring_by_name() can gain the freed keyring Josh Bressers (Apr 27)
Re: MOPS and CVEs? Josh Bressers (May 07)
Re: CVE Request -- libnids v1.24 -- Null pointer dereference Josh Bressers (Apr 01)
Re: kernel: btrfs: check for read permission on src file in the clone ioctl Josh Bressers (May 25)
Re: CVE request: lxr Josh Bressers (May 03)
Re: CVE request: lxr Josh Bressers (May 14)
Re: CVE request - Linux Kernel KGDB/ppc issue Josh Bressers (Apr 29)
Re: CVE Request: MediaWiki 1.15.3 -- Login CSRF Josh Bressers (Apr 07)
Re: CVE request: kernel: connector security bypass Josh Bressers (Apr 01)
Re: A mysql flaw. Josh Bressers (May 18)
Re: CVE request: lxr Josh Bressers (May 03)
Re: CVE Request -- aMSN -- improper SSL certificate validation (MITM) Josh Bressers (Apr 01)
Re: CVE request: VLC <1.0.6 Multiple issues Josh Bressers (Apr 28)
Re: CVE request: ghostscript and gv Josh Bressers (Jun 01)
Re: CVE request - kernel: cifs: Fix a kernel BUG with remote OS/2 server Josh Bressers (Jun 28)
Re: CVE request: kernel: cifs: cifs_create() NULL pointer dereference Josh Bressers (Apr 05)
Re: CVE request for new wireshark vulnerabilities Josh Bressers (Jun 14)
Re: CVE Request -- Python-Mako (prior v0.3.4): Improper escaping of single quotes in escape.cgi (XSS) Josh Bressers (Jun 30)
Re: CVE Assignment (gnustep) Josh Bressers (May 07)
Re: CVE Request -- rpcbind -- Insecure (predictable) temporary file use Josh Bressers (Jun 08)
CVE Assignment (wireshark) Josh Bressers (May 07)
Re: CVE request -- memcached Josh Bressers (Apr 08)
Re: CVE request: phpbb 3.0.7 and before 3.0.5 Josh Bressers (May 19)
Re: CVE Request - kernel: put_tty_queue NULL pointer deref Josh Bressers (Jun 15)
Re: CVE request: Mediawiki below 1.15.4 / 1.16.0beta3 Josh Bressers (Jun 01)
Re: CVE Request: clamav crash via malformed PDF Josh Bressers (May 25)
Re: CVE Request: JIRA Issues Josh Bressers (Apr 16)
Re: ClamAV small issues Josh Bressers (Apr 07)
Re: CVE Request for Horde and Squirrelmail Josh Bressers (May 25)
Stefan Esser's 0day PHP SysCan flaw Josh Bressers (Jun 18)
Re: CVE request: DM Database Server Josh Bressers (Jun 01)
Re: CVE request: joomla before 1.5.18 Josh Bressers (Jun 01)

Kees Cook

CVE Request: policykit (minor) Kees Cook (Apr 01)

Kurt Seifried

Re: ClamAV small issues Kurt Seifried (Apr 07)

Larry Adams

Re: CVE Request -- Cacti v0.8.7 -- three security fixes Larry Adams (Jun 07)

Ludwig Nussel

Re: ClamAV small issues Ludwig Nussel (Apr 09)
Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability Ludwig Nussel (May 19)
CVE Request: w3m does not check null bytes CN/subjAltName Ludwig Nussel (Jun 14)
Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability Ludwig Nussel (May 18)
Check your WPA2 Enterprise setup Ludwig Nussel (Apr 22)
Re: ClamAV small issues Ludwig Nussel (Apr 09)
CVE Request: avahi DoS Ludwig Nussel (Jun 23)
CVE Request: moodle 1.9.8, 1.8.2 Ludwig Nussel (Apr 01)
CVE request: ghostscript and gv Ludwig Nussel (May 28)
Re: CVE Request: moodle 1.9.8, 1.8.2 Ludwig Nussel (Apr 23)

Marcus I. Ryan

Re: [core] CVE Request for Horde and Squirrelmail Marcus I. Ryan (May 20)

Marcus Meissner

Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability Marcus Meissner (Jun 09)
Re: CVE requests: maradns, freeciv, rbot, gitolite, gource, shib, kvirc Marcus Meissner (Jun 24)
Re: CVE Request -- libpng v1.4.3 and v1.2.44 -- memory leak while processing PNG image with malformed sCAL chunks Marcus Meissner (Jun 30)
Re: Fwd: emesene preditable temporary filename Marcus Meissner (May 29)

Mark Hatle

Re: [security-linux] Re: [oss-security] CVE request - Linux Kernel KGDB/ppc issue Mark Hatle (Apr 29)

Matthew Wilkes

Re: CVE Request -- Plone -- arbitrary HTML code injection in safe_html Matthew Wilkes (Jun 22)

Matthias Andree

CVE request: fetchmail 4.6.3...6.3.16 DoS in -v -v mode in multibyte locales on invalid input Matthias Andree (Apr 18)
Re: CVE request: fetchmail 4.6.3...6.3.16 DoS in -v -v mode in multibyte locales on invalid input Matthias Andree (Apr 20)

Matthijs Kooijman

Multiple vulnerabilities in OpenTTD Matthijs Kooijman (May 01)

Max Olsterd

CVE Request for Horde and Squirrelmail Max Olsterd (May 20)
Re: CVE Request for Horde and Squirrelmail Max Olsterd (May 22)

Michael Gilbert

Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove Michael Gilbert (Apr 17)
Re: Debian Moin Question Michael Gilbert (Apr 05)
Re: CVE request: ghostscript and gv Michael Gilbert (Jun 01)
Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove Michael Gilbert (Apr 17)
Re: Couple of kernel issues Michael Gilbert (Apr 14)

Michael M Slusarz

Re: [core] CVE Request for Horde and Squirrelmail Michael M Slusarz (May 24)

Moritz Muehlenhoff

Re: CVE Request -- Zabbix v1.8.2 and v.1.6.9 Moritz Muehlenhoff (Apr 02)
Re: Month of PHP Security 2010 Issues Moritz Muehlenhoff (May 11)
CVE requests: maradns, freeciv, rbot, gitolite, gource, shib, kvirc Moritz Muehlenhoff (Jun 09)
CVE requests for mplayer/vlc and abcm2ps Moritz Muehlenhoff (Jun 03)

Morten Shearman Kirkegaard

Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface Morten Shearman Kirkegaard (Jun 26)

Nicob

Re: CVE Request -- Zabbix v1.8.2 and v.1.6.9 Nicob (Apr 04)
Re: CVE Request for Horde and Squirrelmail Nicob (May 24)

Nico Golde

CVE-2010-0463 incomplete horde fixes Nico Golde (Apr 03)
CVE id request: syscp Nico Golde (Jun 29)

Nicolas GREGOIRE

RE: CVE Request -- Zabbix v1.8.2 and v.1.6.9 Nicolas GREGOIRE (Apr 02)

Nicolas Grégoire

Re: SFCB vulnerabilities Nicolas Grégoire (Jun 02)
Re: SFCB vulnerabilities Nicolas Grégoire (Jun 01)
SFCB vulnerabilities Nicolas Grégoire (May 31)

Oden Eriksson

Re: A mysql flaw. Oden Eriksson (May 10)
A mysql flaw. Oden Eriksson (May 07)

Panu Matilainen

Re: CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775) Panu Matilainen (Jun 03)

Paul Lesniewski

Re: [SquirrelMail-Security] [oss-security] CVE Request for Horde and Squirrelmail Paul Lesniewski (May 25)
Re: [SquirrelMail-Security] [oss-security] CVE Request for Horde and Squirrelmail Paul Lesniewski (Jun 21)

Péter Veres

CVE Request -- PHP strrchr() Interruption Information Leak Vulnerability Péter Veres (Jun 30)

Pierre Joye

Re: CVE Request -- PHP strrchr() Interruption Information Leak Vulnerability Pierre Joye (Jun 30)
Re: Re: Stefan Esser's 0day PHP SysCan flaw Pierre Joye (Jun 30)

Raphael Geissert

CVE request: XSS in python paste Raphael Geissert (Jun 29)
CVE request: HTML Purifier Raphael Geissert (Jun 30)
CVE request: lxr Raphael Geissert (May 02)
Re: Stefan Esser's 0day PHP SysCan flaw Raphael Geissert (Jun 27)
Re: Stefan Esser's 0day PHP SysCan flaw Raphael Geissert (Jun 30)
CVE request: PHP MOPS-2010-56..60 Raphael Geissert (Jun 30)

Reed Loden

CVE Request: MediaWiki 1.15.3 -- Login CSRF Reed Loden (Apr 06)

Rémi Denis-Courmont

VLC 1.0 series End of Life Rémi Denis-Courmont (Jun 17)

Sebastian Krahmer

Re: SFCB vulnerabilities Sebastian Krahmer (Jun 01)

Sebastien Delafond

CVE request: zonecheck Sebastien Delafond (May 29)

Shennan.Wang

CVE request: DM Database Server Shennan.Wang (May 31)

Solar Designer

Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability Solar Designer (May 20)
Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability Solar Designer (May 19)
Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability Solar Designer (May 20)
Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability Solar Designer (May 18)

Stefan Behte

prewikka permission bug Stefan Behte (Jun 01)

Steve Langasek

Re: Re: CVE request: irssi 0.8.15 Steve Langasek (Apr 27)

Steven M. Christey

Re: CVE request: lxr Steven M. Christey (May 06)
Re: CVE Request: clamav crash via malformed PDF Steven M. Christey (May 25)
Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability Steven M. Christey (Jun 09)
Re: CVE Request -- Zabbix v1.8.2 and v.1.6.9 Steven M. Christey (Apr 06)
Re: CVE Request -- rpcbind -- Insecure (predictable) temporary file use Steven M. Christey (Jun 07)
Re: Re: CVE Request -- Plone -- arbitrary HTML code injection in safe_html Steven M. Christey (Jun 22)
Re: jar, fastjar directory traversal vulnerabilities Steven M. Christey (Jun 08)
Re: CVE request: phpbb 3.0.7 and before 3.0.5 Steven M. Christey (May 18)
Re: CVE Request -- Cacti v0.8.7 -- three security fixes Steven M. Christey (May 27)
Re: CVE Request -- rpcbind -- Insecure (predictable) temporary file use Steven M. Christey (Jun 07)
Re: CVE request: phpbb 3.0.7 and before 3.0.5 Steven M. Christey (May 19)
Re: CVE request: Java webstart remote code execution Steven M. Christey (Apr 15)
Re: CVE request: irssi 0.8.15 Steven M. Christey (Apr 12)
Re: CVE request for new wireshark vulnerabilities Steven M. Christey (Jun 14)
Re: CVE request: punbb before 1.3.4 xss Steven M. Christey (Jun 14)
Re: CVE request: UnrealIRCd 3.2.8.1 source code contained a backdoor allowing for remote command execution Steven M. Christey (Jun 14)
Re: CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775) Steven M. Christey (Jun 03)
Re: CVE Request: off by one DoS in pe_icons.c Steven M. Christey (May 25)
Re: CVE Request - kernel: put_tty_queue NULL pointer deref Steven M. Christey (Jun 15)
Re: CVE requests: maradns, freeciv, rbot, gitolite, gource, shib, kvirc Steven M. Christey (Jun 24)
Re: CVE request: zonecheck Steven M. Christey (Jun 07)
Re: Month of PHP Security 2010 Issues Steven M. Christey (May 11)
Re: CVE Request for Horde and Squirrelmail Steven M. Christey (May 25)
Re: CVE Request: moodle 1.9.8, 1.8.2 Steven M. Christey (Apr 29)
Re: CVE request: phorum < 5.2.15 backend XSS Steven M. Christey (May 18)
CVE assignment: ghostscript stack-based overflow Steven M. Christey (May 11)
Re: CVE Request -- Cacti v0.8.7 -- three security fixes Steven M. Christey (Jun 07)

Taras

Searching for vuln apps for testing free code review tools Taras (Apr 26)

Thijs Kinkhorst

Re: CVE request: phpbb 3.0.7 and before 3.0.5 Thijs Kinkhorst (May 19)
Re: CVE Request for Horde and Squirrelmail Thijs Kinkhorst (May 23)
Re: CVE Request for Horde and Squirrelmail Thijs Kinkhorst (May 21)
CVE Request: cacti SQL injection in template_export Thijs Kinkhorst (Apr 23)

Thomas Biege

clamav null pointer dereference Thomas Biege (May 21)
Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities Thomas Biege (May 26)
Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities Thomas Biege (May 20)
Who visits the Linux Security Summit 2010 Thomas Biege (May 25)
Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities Thomas Biege (May 25)
Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities Thomas Biege (May 26)

Tim Starling

Re: CVE Request -- Abcm2ps v5.9.12 -- multiple unspecified vulnerabilities Tim Starling (Apr 08)

Tobias Heinlein

CVE request: irssi 0.8.15 Tobias Heinlein (Apr 11)

Tomas Hoger

Re: A mysql flaw. Tomas Hoger (May 10)
Re: CVE requests for mplayer/vlc and abcm2ps Tomas Hoger (Jun 04)
Re: CVE requests: LibTIFF Tomas Hoger (Jun 24)
Re: CVE Request -- Zabbix v1.8.2 and v.1.6.9 Tomas Hoger (Apr 03)
Python rgbimg and audioop issues Tomas Hoger (May 25)
Re: CVE requests: LibTIFF Tomas Hoger (Jun 24)
Re: CVE requests: LibTIFF Tomas Hoger (Jun 29)
CVE request - sudo Tomas Hoger (Apr 15)
WordNet wn format string issue Tomas Hoger (Apr 26)
Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities (3.3.x) Tomas Hoger (May 31)
Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities (3.3.x) Tomas Hoger (May 28)
Re: CVE request: irssi 0.8.15 Tomas Hoger (Apr 13)
Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities Tomas Hoger (May 26)

Tony Roman

Re: CVE Request -- Cacti v0.8.7 -- three security fixes Tony Roman (Jun 07)

Vincent Danen

Re: jar, fastjar directory traversal vulnerabilities Vincent Danen (Jun 08)
jar, fastjar directory traversal vulnerabilities Vincent Danen (Jun 08)
CVE request: moodle 1.9.9/1.8.13 multiple vulnerabilities Vincent Danen (Jun 18)
Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability Vincent Danen (Jun 10)
CVE request for new wireshark vulnerabilities Vincent Danen (Jun 10)

Wouter Coekaerts

Re: Re: CVE request: irssi 0.8.15 Wouter Coekaerts (Apr 26)
Re: CVE request: irssi 0.8.15 Wouter Coekaerts (Apr 13)

Previous period

Next period