oss-sec mailing list archives

Re: CVE request: mailscanner, multiple vulnerabilities

From: Josh Bressers <bressers () redhat com>
Date: Mon, 13 Sep 2010 17:00:12 -0400 (EDT)

----- "Raphael Geissert" <geissert () debian org> wrote:


I reported some vulnerabilities in mailscanner but forgot to assign ids.
Could somebody assign ones?

Incomplete fix for CVE-2008-5313:
http://bugs.debian.org/596403


Please use CVE-2010-3095


update{_bad,}_phishing_sites scripts may download and use spoofed
files:
http://bugs.debian.org/596396


CVE-2010-3292


Local users may prevent virus signatures from being updated:
http://bugs.debian.org/596397


CVE-2010-3293

Thanks

-- 
    JB

Current thread:

CVE request: mailscanner, multiple vulnerabilities Raphael Geissert (Sep 11)
- Re: CVE request: mailscanner, multiple vulnerabilities Josh Bressers (Sep 13)