oss-sec: by author
RSS Feed
About List
All Lists
Previous period
465 messages
starting Aug 02 10 and
ending Aug 09 10
Date index |
Thread index |
Author index
akuster
Re: CVE-2010-2524 kernel: dns_resolver upcall security issue akuster (Aug 02)
Re: kernel: gfs2 acl issue akuster (Jul 09)
Alex Legler
CVE request: uzbl before 2010.08.05: User-assisted execution of arbitrary commands caused by faulty default config Alex Legler (Aug 06)
CVE Request: pidgin-knotify remote command injection Alex Legler (Sep 12)
CVE request: Horde Gollem <1.1.2 XSS in view.php Alex Legler (Sep 29)
Re: CVE request: Horde Gollem <1.1.2 XSS in view.php Alex Legler (Sep 30)
Amos Jeffries
Re: CVE Request -- Squid v3.1.6 -- DoS (crash) while processing large DNS replies with no IPv6 resolver present Amos Jeffries (Aug 25)
Andrea Barisani
[oCERT-2010-004] FFmpeg/libavcodec arbitrary offset dereference Andrea Barisani (Sep 28)
[oCERT-2010-003] Free Simple CMS path sanitization errors Andrea Barisani (Sep 17)
[oCERT-2010-002] Joomla input sanitization errors (XSS) Andrea Barisani (Jul 20)
Andrew Morton
Re: [Security] [oss-security] Re: /proc infoleaks Andrew Morton (Sep 07)
Re: [Security] /proc infoleaks Andrew Morton (Sep 07)
Re: Re: [Security] /proc infoleaks Andrew Morton (Sep 07)
Anthon Pang
CVE Request: Piwik < 0.6.4 Arbitrary file inclusion Anthon Pang (Jul 28)
Arnaud Ebalard
Re: patch for remote buffer overflows and local message spoofing in mipv6 daemon Arnaud Ebalard (Jul 08)
Ben Hutchings
Re: kernel: [PARISC] led.c - fix potential stack overflow in led_proc_write() Ben Hutchings (Aug 13)
Ben Schmidt
Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface Ben Schmidt (Jul 05)
Braden Thomas
Re: CVE Request -- FreeType -- Memory corruption flaw by processing certain LWFN fonts + three more Braden Thomas (Aug 09)
Brad Spengler
Re: [PATCH] exec argument expansion can inappropriately trigger OOM-killer Brad Spengler (Aug 30)
Re: Re: [Security] [oss-security] Re: /proc infoleaks Brad Spengler (Sep 08)
Re: [Security] [oss-security] Re: /proc infoleaks Brad Spengler (Sep 07)
Carsten H. Eiram
Re: opera 10.61 fixes 3 security bugs Carsten H. Eiram (Aug 12)
Christoph Thiel
Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface Christoph Thiel (Jul 04)
dann frazier
Re: kernel: [PARISC] led.c - fix potential stack overflow in led_proc_write() dann frazier (Aug 13)
CVE Request: kernel: hvc_console: Fix race between hvc_close and hvc_remove dann frazier (Jul 06)
CVE Request -- Linux/SCTP DoS in sctp_packet_config() dann frazier (Sep 24)
Dan Rosenberg
CVE request: Lynx Dan Rosenberg (Aug 09)
Re: CVE id request: libc fortify source information disclosure Dan Rosenberg (Sep 02)
Re: CVE id request: libc fortify source information disclosure Dan Rosenberg (Sep 02)
CVE request: CouchDB insecure library loading (Debian/Ubuntu only) Dan Rosenberg (Aug 25)
Re: CVE request: ghostscript Dan Rosenberg (Jul 12)
Re: CVE request: lxr Dan Rosenberg (Jul 31)
Re: kernel: gfs2 acl issue Dan Rosenberg (Jul 08)
Re: CVE request: ghostscript Dan Rosenberg (Jul 12)
Re: CVE request: kernel: numerous infoleaks Dan Rosenberg (Sep 15)
CVE request: kernel: Heap corruption in ROSE Dan Rosenberg (Sep 20)
CVE request: kernel: btrfs Dan Rosenberg (Jul 21)
Re: CVE Request [two ids] -- cabextract -- 1, Infinite loop in MS-ZIP and Quantum decoders (minor) 2, Integer wrap-around (crash) by processing certain *.cab files in test archive mode Dan Rosenberg (Aug 02)
CVE request: NetSMB BSD kernel module (minor) Dan Rosenberg (Jul 12)
CVE request: multiple kernel stack memory disclosures Dan Rosenberg (Sep 25)
Interesting kernel bug Dan Rosenberg (Sep 24)
Re: kernel: gfs2 acl issue Dan Rosenberg (Jul 09)
David Rientjes
Re: [PATCH 1/4] oom: remove totalpage normalization from oom_badness() David Rientjes (Sep 15)
Eren Türkay
Re: Request CVE ID for bogofilter base64 decoder heap corruption Eren Türkay (Jul 05)
Eugene Teo
CVE-2010-3081 kernel: 64-bit Compatibility Mode Stack Pointer Underflow Eugene Teo (Sep 15)
CVE-2010-3080 kernel: /dev/sequencer open failure is not handled correctly Eugene Teo (Sep 08)
Re: CVE request - kernel: integer overflow in ext4_ext_get_blocks() Eugene Teo (Aug 16)
CVE request - kernel: xfs: stale data exposure Eugene Teo (Aug 17)
Re: CVE requests: POE::Component::IRC, Alien Arena, Babiloo, Typo3, abcm2ps, ModSecurity, Linux kernel Eugene Teo (Sep 29)
kernel: gfs2 acl issue Eugene Teo (Jul 08)
Re: kernel: [PARISC] led.c - fix potential stack overflow in led_proc_write() Eugene Teo (Aug 13)
CVE request: kernel: xfs: XFS_IOC_FSGETXATTR ioctl memory leak Eugene Teo (Sep 06)
kernel: [PARISC] led.c - fix potential stack overflow in led_proc_write() Eugene Teo (Aug 02)
Re: kernel: [PARISC] led.c - fix potential stack overflow in led_proc_write() Eugene Teo (Aug 13)
Re: CVE request: kernel: Heap corruption in ROSE Eugene Teo (Sep 20)
CVE-2010-2959 kernel: can: add limit for nframes and clean up signed/unsigned variables Eugene Teo (Aug 20)
CVE-2010-2954 kernel: irda null ptr deref Eugene Teo (Aug 31)
Re: CVE-2010-2524 kernel: dns_resolver upcall security issue Eugene Teo (Aug 02)
CVE request: kernel: niu buffer overflow for ETHTOOL_GRXCLSRLALL Eugene Teo (Sep 08)
CVE request - kernel: [PARISC] led.c - fix potential stack overflow in led_proc_write() Eugene Teo (Aug 03)
CVE request: kernel: gfs2: rename cases kernel panic Eugene Teo (Aug 01)
CVE request - kernel: nfsd4: bug in read_buf Eugene Teo (Jul 06)
CVE-2010-2960 kernel: keyctl_session_to_parent null ptr deref Eugene Teo (Sep 01)
Re: CVE Request -- Linux/SCTP DoS in sctp_packet_config() Eugene Teo (Sep 24)
Re: CVE requests: POE::Component::IRC, Alien Arena, Babiloo, Typo3, abcm2ps, ModSecurity, Linux kernel Eugene Teo (Sep 27)
CVE request - kernel: net sched memleak Eugene Teo (Aug 17)
CVE-2010-2955 kernel: wireless: fix 64K kernel heap content leak via ioctl Eugene Teo (Aug 31)
CVE request - kernel: pktcdvd ioctl dev_minor missing range check Eugene Teo (Sep 28)
CVE request - kernel: jfs: don't allow os2 xattr namespace overlap with others Eugene Teo (Aug 20)
Re: CVE request - kernel: prevent heap corruption in snd_ctl_new() Eugene Teo (Sep 29)
kernel: bridge br_multicast null ptr deref Eugene Teo (Jul 07)
Re: CVE Request: kernel: l2tp: Fix oops in pppol2tp_xmit Eugene Teo (Jul 04)
CVE-2010-3301 kernel: IA32 System Call Entry Point Vulnerability Eugene Teo (Sep 15)
CVE request - kernel: prevent heap corruption in snd_ctl_new() Eugene Teo (Sep 28)
Re: kernel: gfs2 acl issue Eugene Teo (Jul 08)
CVE-2010-2524 kernel: dns_resolver upcall security issue Eugene Teo (Aug 01)
CVE request: kernel: numerous infoleaks Eugene Teo (Sep 13)
CVE request - kernel: integer overflow in ext4_ext_get_blocks() Eugene Teo (Aug 15)
Re: CVE-2010-3301 kernel: IA32 System Call Entry Point Vulnerability Eugene Teo (Sep 15)
Florian Weimer
CVE request: GnuPG 2 Florian Weimer (Jul 23)
Re: CVE Request 1, NSS 2, Qt: Doesn't handle wildcards in Common Name properly Florian Weimer (Sep 06)
Re: CVE Request: BGP protocol vulnerability Florian Weimer (Aug 29)
CVE Request: BGP protocol vulnerability Florian Weimer (Aug 28)
Geoffroy Couprie
Re: CVE request: VLC media player - DLL preloading vulnerability Geoffroy Couprie (Aug 26)
CVE request: VLC media player - DLL preloading vulnerability Geoffroy Couprie (Aug 25)
Giuseppe Iuculano
CVE request: smbind Sql Injection Giuseppe Iuculano (Sep 05)
Glenn Randers-Pehrson
Re: [png-mng-implement] [oss-security] CVE Request -- libpng v1.4.3 and v1.2.44 -- memory leak while processing PNG image with malformed sCAL chunks Glenn Randers-Pehrson (Jul 05)
Greg Brockman
CVE request: git Greg Brockman (Jul 21)
Greg KH
Re: Small exposure in ocfs2 fast symlinks. Greg KH (Sep 29)
Hafez Kamal
[HITB-Ann] Reminder: HITB2010 Malaysia Call for Papers Closing August 9th Hafez Kamal (Jul 29)
[HITB-Announce] HITB2010 SIGNINT Sessions Hafez Kamal (Aug 26)
[HITB-Announce] HITB Magazine Issue 003 + HITBSecConf2010 - Amsterdam Hafez Kamal (Jul 04)
Hanno Böck
CVE request: egroupware remote code and xss Hanno Böck (Sep 20)
CVE request: mednafen stack manipulation Hanno Böck (Sep 09)
CVE request: epiphany not checking ssl certs Hanno Böck (Sep 17)
CVE request: mantis before 1.2.3 (XSS) Hanno Böck (Sep 14)
CVE request: serendipity < 1.5.4 xss Hanno Böck (Aug 29)
CVE 2009 request: twiki before 4.3.2 CSRF Hanno Böck (Aug 02)
CVE request: Attachment XSS in mantis < 1.2.2 Hanno Böck (Aug 02)
Re: CVE request: mantis before 1.2.3 (XSS) Hanno Böck (Sep 14)
CVE request: joomla < 1.5.20 Hanno Böck (Aug 01)
CVE request: cmsmadesimple < 1.8.1 Hanno Böck (Aug 01)
CVE request: clamav < 0.96.3 pdf bounds checking Hanno Böck (Sep 22)
CVE request: xss in pecl-apc before 3.1.4 Hanno Böck (Sep 13)
Henrik Nordström
Re: RFC: squid: Fix free memory corruption and off-by-on error when comparing SNMP OIDs Henrik Nordström (Aug 13)
Henri Salo
CVE-identifier request for Dovecot ACL security bug Henri Salo (Sep 16)
Hui Zhu
Re: kernel: [PARISC] led.c - fix potential stack overflow in led_proc_write() Hui Zhu (Aug 09)
Huzaifa Sidhpurwala
CVE Request: mailman Huzaifa Sidhpurwala (Sep 13)
Jan Lieskovsky
CVE Request -- FreeType -- Memory corruption flaw by processing certain LWFN fonts Jan Lieskovsky (Aug 06)
CVE Request -- Python -- accept() implementation in async core is broken => more subcases Jan Lieskovsky (Sep 09)
CVE Request -- Mumble server (Murmur) / Qt SQLite -- Remotely exploitable DoS (murmur termination) due QueryUsers Qt SQLite database bug Jan Lieskovsky (Jul 02)
CVE Request -- MySQL v5.1.49 -- multiple DoS flaws Jan Lieskovsky (Aug 30)
CVE Request -- Horde v3.3.8 -- XSS in icon_browser.php due improper sanitization of 'subdir' URL parameter Jan Lieskovsky (Sep 06)
CVE Request -- OpenConnect < v2.25 did not verify SSL server certificates Jan Lieskovsky (Aug 01)
CVE Request [Microsoft Windows Ruby-v1.9.x] -- Buffer over-run leading to ACE Jan Lieskovsky (Jul 02)
CVE Request -- KVIrc -- Remote CTCP commands execution via specially-crafted CTCP parameter Jan Lieskovsky (Jul 28)
CVE Request 1, NSS 2, Qt: Doesn't handle wildcards in Common Name properly Jan Lieskovsky (Sep 03)
CVE Request -- EncFS / fuse-encfs [three ids] -- Multiple Vulnerabilities in EncFS Jan Lieskovsky (Sep 05)
CVE Request -- OpenOffice.org [two ids]: 1, integer truncation error 2, short integer overflow Jan Lieskovsky (Aug 11)
Re: CVE Request -- FreeType -- Memory corruption flaw by processing certain LWFN fonts + three more Jan Lieskovsky (Aug 06)
CVE Request -- Quagga (bgpd) [two ids] -- 1, Stack buffer overflow by processing crafted Refresh-Route msgs 2, NULL ptr deref by parsing certain AS paths by BGP update request Jan Lieskovsky (Aug 24)
CVE Request [two ids] -- cabextract -- 1, Infinite loop in MS-ZIP and Quantum decoders (minor) 2, Integer wrap-around (crash) by processing certain *.cab files in test archive mode Jan Lieskovsky (Aug 02)
CVE Request -- Socat -- Stack overflow by lexical scanning of nested character patterns Jan Lieskovsky (Aug 02)
CVE-2008-id Request -- ssmtp -- standardise() -- Buffer overflow Jan Lieskovsky (Jul 26)
CVE Request -- Bip -- Remote Dos (crash) by exchanging user credentials Jan Lieskovsky (Sep 05)
CVE Request -- phpMyAdmin (x < v3.3.7) -- XSS in setup script (PMASA-2010-7) Jan Lieskovsky (Sep 08)
CVE Request -- Roundup: XSS by processing PageTemplate template for a named page Jan Lieskovsky (Jul 02)
CVE Request -- phpMyAdmin - v3.6.6 -- XSS attack using debugging messages (CVE-2010-3056 discussion) Jan Lieskovsky (Sep 01)
CVE Request -- Squid -- Denial of service due internal error in string handling (SQUID-2010:3) Jan Lieskovsky (Sep 05)
CVE Request -- Squid v3.1.6 -- DoS (crash) while processing large DNS replies with no IPv6 resolver present Jan Lieskovsky (Aug 24)
Joachim Fritschi
2 vulnerabilties in phpCAS Joachim Fritschi (Aug 03)
CVE request - phpCAS: prevent symlink attacks, directory traversal and XSS during a proxy callback Joachim Fritschi (Sep 29)
Joel Becker
Small exposure in ocfs2 fast symlinks. Joel Becker (Sep 29)
Re: Small exposure in ocfs2 fast symlinks. Joel Becker (Sep 30)
Joe Orton
Re: CVE Request 1, NSS 2, Qt: Doesn't handle wildcards in Common Name properly Joe Orton (Sep 04)
CVE-2010-2791: mod_proxy information leak affecting 2.2.9 only Joe Orton (Jul 30)
John Bowler
RE: [png-mng-implement] [oss-security] CVE Request -- libpng v1.4.3 and v1.2.44 -- memory leak while processing PNG image with malformed sCAL chunks John Bowler (Jul 05)
Jon Oberheide
Re: Re: [Security] /proc infoleaks Jon Oberheide (Sep 07)
Josh Bressers
Re: CVE request for OpenTTD Josh Bressers (Jul 21)
Re: CVE request - kernel: nfsd4: bug in read_buf Josh Bressers (Jul 08)
Re: CVE Request -- KVIrc -- Remote CTCP commands execution via specially-crafted CTCP parameter Josh Bressers (Jul 29)
Re: CVE Request -- phpMyAdmin - v3.6.6 -- XSS attack using debugging messages (CVE-2010-3056 discussion) Josh Bressers (Sep 01)
Re: CVE Request -- Mumble server (Murmur) / Qt SQLite -- Remotely exploitable DoS (murmur termination) due QueryUsers Qt SQLite database bug Josh Bressers (Jul 02)
Re: Request CVE ID for bogofilter base64 decoder heap corruption Josh Bressers (Jul 06)
Re: CVE request: PHP MOPS-2010-56..60 Josh Bressers (Aug 25)
Re: kernel: l2tp: Fix oops in pppol2tp_xmit Josh Bressers (Jul 06)
Re: CVE request - kernel: net sched memleak Josh Bressers (Aug 19)
Re: CVE Request -- PHP strrchr() Interruption Information Leak Vulnerability Josh Bressers (Jul 02)
Re: CVE request - kernel: jfs: don't allow os2 xattr namespace overlap with others Josh Bressers (Aug 20)
Re: CVE Request [two ids] -- cabextract -- 1, Infinite loop in MS-ZIP and Quantum decoders (minor) 2, Integer wrap-around (crash) by processing certain *.cab files in test archive mode Josh Bressers (Aug 02)
Re: Re: CVE request, php var_export Josh Bressers (Jul 16)
Re: CVE request: kernel: xfs: XFS_IOC_FSGETXATTR ioctl memory leak Josh Bressers (Sep 07)
Re: CVE request: Attachment XSS in mantis < 1.2.2 Josh Bressers (Aug 03)
Re: CVE request: lxsession-logout Josh Bressers (Jul 16)
Re: CVE request: clamav < 0.96.3 pdf bounds checking Josh Bressers (Sep 27)
Re: CVE Request: heap-based buffer overflow in libHX Josh Bressers (Aug 20)
Re: CVE request: Lynx Josh Bressers (Aug 09)
Re: CVE request: kernel: numerous infoleaks Josh Bressers (Sep 14)
Re: CVE request: padding oracle attack: ruby on rails 2.3, owasp esapi Josh Bressers (Sep 14)
Re: CVE request: epiphany not checking ssl certs Josh Bressers (Sep 17)
Re: Minor security flaw with pam_xauth Josh Bressers (Sep 21)
Re: Universal XSS in Rekonq Josh Bressers (Jul 21)
Re: CVE Request -- Roundup: XSS by processing PageTemplate template for a named page Josh Bressers (Jul 02)
Another freetype-demos buffer overflow Josh Bressers (Jul 22)
Re: patch for remote buffer overflows and local message spoofing in mipv6 daemon Josh Bressers (Jul 07)
Re: CVE-2008-id Request -- ssmtp -- standardise() -- Buffer overflow Josh Bressers (Jul 26)
Re: CVE request: XSS in nusoap Josh Bressers (Sep 07)
Re: CVE request: VideoLAN advisory 1004 Josh Bressers (Aug 11)
Re: RFC: squid: Fix free memory corruption and off-by-on error when comparing SNMP OIDs Josh Bressers (Aug 12)
Re: Minor security flaw with pam_xauth Josh Bressers (Sep 21)
Re: CVE Request -- EncFS / fuse-encfs [three ids] -- Multiple Vulnerabilities in EncFS Josh Bressers (Sep 07)
Re: CVE id request: mapserver Josh Bressers (Jul 21)
Re: CVE Request -- OpenConnect < v2.25 did not verify SSL server certificates Josh Bressers (Aug 02)
Re: CVE request: uzbl before 2010.08.05: User-assisted execution of arbitrary commands caused by faulty default config Josh Bressers (Aug 06)
Re: CVE request: egroupware remote code and xss Josh Bressers (Sep 21)
Re: CVE request: weborf: directory traversal Josh Bressers (Sep 17)
Re: CVE request: ghostscript Josh Bressers (Jul 12)
Re: CVE request: mednafen stack manipulation Josh Bressers (Sep 10)
Re: CVE request: joomla < 1.5.20 Josh Bressers (Aug 02)
Re: CVE requests: POE::Component::IRC, Alien Arena, Babiloo, Typo3, abcm2ps, ModSecurity, Linux kernel Josh Bressers (Sep 28)
Re: CVE request: mantis before 1.2.3 (XSS) Josh Bressers (Sep 16)
Re: CVE Request: Piwik < 0.6.4 Arbitrary file inclusion Josh Bressers (Jul 29)
Re: CVE Request -- Python -- accept() implementation in async core is broken => more subcases Josh Bressers (Sep 10)
Re: CVE Request -- Squid -- Denial of service due internal error in string handling (SQUID-2010:3) Josh Bressers (Sep 07)
Re: CVE request: cmsmadesimple < 1.8.1 Josh Bressers (Aug 02)
Re: CVE Request: mailman Josh Bressers (Sep 13)
Re: CVE request: kernel: niu buffer overflow for ETHTOOL_GRXCLSRLALL Josh Bressers (Sep 10)
Re: patch for remote buffer overflows and local message spoofing in mipv6 daemon Josh Bressers (Jul 08)
Re: CVE Request: pidgin-knotify remote command injection Josh Bressers (Sep 13)
Re: CVE id requests: drupal Josh Bressers (Sep 13)
CVE Assignment: django Josh Bressers (Sep 09)
Re: CVE Request -- FreeType -- Memory corruption flaw by processing certain LWFN fonts + three more Josh Bressers (Aug 06)
Re: CVE request: mailscanner, multiple vulnerabilities Josh Bressers (Sep 13)
Re: CVE Request -- MySQL v5.1.49 -- multiple DoS flaws Josh Bressers (Sep 22)
Re: CVE requests: Poppler, Quassel, Pyfribidi, Overkill, DocUtils, FireGPG, Wireshark Josh Bressers (Sep 29)
Re: CVE Request -- OpenOffice.org [two ids]: 1, integer truncation error 2, short integer overflow Josh Bressers (Aug 11)
Re: CVE Request [Microsoft Windows Ruby-v1.9.x] -- Buffer over-run leading to ACE Josh Bressers (Jul 02)
Re: kernel: gfs2 acl issue Josh Bressers (Jul 09)
Re: CVE request for browser IFRAME/file download DoS Josh Bressers (Jul 06)
Re: CVE request: Horde Gollem <1.1.2 XSS in view.php Josh Bressers (Sep 30)
Re: CVE requests: POE::Component::IRC, Alien Arena, Babiloo, Typo3, abcm2ps, ModSecurity, Linux kernel Josh Bressers (Sep 30)
Re: CVE Request: openssl double free Josh Bressers (Aug 12)
Re: CVE request: zabbix Josh Bressers (Jul 29)
Re: Re: CVE Request - ZNC Josh Bressers (Aug 10)
Re: Qt SSL endless loop Josh Bressers (Jul 16)
Re: CVE id request for non disclosed issue? Josh Bressers (Sep 13)
Re: CVE Request [two ids] -- cabextract -- 1, Infinite loop in MS-ZIP and Quantum decoders (minor) 2, Integer wrap-around (crash) by processing certain *.cab files in test archive mode Josh Bressers (Aug 02)
Re: CVE request: multiple kernel stack memory disclosures Josh Bressers (Sep 27)
Re: CVE request: mediawiki Josh Bressers (Jul 29)
Re: CVE request: kernel: btrfs Josh Bressers (Jul 21)
Re: CVE request - kernel: pktcdvd ioctl dev_minor missing range check Josh Bressers (Sep 28)
Re: CVE request: pixelpost Josh Bressers (Sep 17)
Re: CVE id request: libc fortify source information disclosure Josh Bressers (Aug 31)
Re: CVE for Intel INTEL-SA-00025 Josh Bressers (Jul 21)
Re: CVE Request: BGP protocol vulnerability Josh Bressers (Aug 30)
Re: CVE request: simplemachinesforum Josh Bressers (Jul 02)
Re: CVE 2009 request: twiki before 4.3.2 CSRF Josh Bressers (Aug 03)
Re: CVE request: CouchDB insecure library loading (Debian/Ubuntu only) Josh Bressers (Aug 26)
Re: [oCERT-2010-003] Free Simple CMS path sanitization errors Josh Bressers (Sep 17)
Re: CVE request: kernel: gfs2: rename cases kernel panic Josh Bressers (Aug 02)
Re: CVE ID Request For 2Wire Broadband Router Session Hijacking Vulnerability Josh Bressers (Aug 10)
Re: CVE request - kernel: prevent heap corruption in snd_ctl_new() Josh Bressers (Sep 29)
Re: CVE request: git Josh Bressers (Jul 22)
Re: CVE-identifier request for Dovecot ACL security bug Josh Bressers (Sep 16)
Re: CVE request: serendipity < 1.5.4 xss Josh Bressers (Aug 31)
Re: CVE request: NetSMB BSD kernel module (minor) Josh Bressers (Jul 16)
Re: CVE Request -- Python -- accept() implementation in async core is broken => more subcases Josh Bressers (Sep 22)
Re: kernel: [PARISC] led.c - fix potential stack overflow in led_proc_write() Josh Bressers (Aug 03)
Re: [oCERT-2010-002] Joomla input sanitization errors (XSS) Josh Bressers (Jul 21)
Re: CVE request: moin multiple XSS Josh Bressers (Jul 02)
Re: mikmod incomplete fix for CVE-2009-3995 Josh Bressers (Jul 26)
Re: CVE Request -- MySQL v5.1.49 -- multiple DoS flaws Josh Bressers (Sep 10)
Re: CVE request: ZNC NULL pointer dereference Josh Bressers (Jul 02)
Re: CVE Request: SLiM insecure PATH assignment Josh Bressers (Aug 20)
Re: Minor security flaw with pam_xauth Josh Bressers (Sep 21)
Re: CVE request: zope-ldapuser Josh Bressers (Aug 19)
Re: CVE Request: mailman Josh Bressers (Sep 13)
Re: CVE request: smbind Sql Injection Josh Bressers (Sep 07)
Re: Cacti XSS fixes in 0.8.7g Josh Bressers (Jul 26)
Re: CVE request: xss in pecl-apc before 3.1.4 Josh Bressers (Sep 14)
Re: CVE Request -- Horde v3.3.8 -- XSS in icon_browser.php due improper sanitization of 'subdir' URL parameter Josh Bressers (Sep 07)
Re: CVE request - kernel: xfs: stale data exposure Josh Bressers (Aug 19)
Re: Multiple bugs in freetype Josh Bressers (Jul 14)
Re: CVE Request -- Quagga (bgpd) [two ids] -- 1, Stack buffer overflow by processing crafted Refresh-Route msgs 2, NULL ptr deref by parsing certain AS paths by BGP update request Josh Bressers (Aug 25)
Re: CVE request: GnuPG 2 Josh Bressers (Jul 26)
Re: CVE Request -- Socat -- Stack overflow by lexical scanning of nested character patterns Josh Bressers (Aug 02)
Re: CVE Request -- Bip -- Remote Dos (crash) by exchanging user credentials Josh Bressers (Sep 07)
Re: CVE request: Apache Axis2 Session Fixation Josh Bressers (Jul 06)
Re: CVE request: epiphany not checking ssl certs Josh Bressers (Sep 21)
Re: Minor security flaw with pam_xauth Josh Bressers (Sep 27)
Re: Re: CVE Request -- Squid v3.1.6 -- DoS (crash) while processing large DNS replies with no IPv6 resolver present Josh Bressers (Aug 25)
Julien Cristau
Re: CVE Request 1, NSS 2, Qt: Doesn't handle wildcards in Common Name properly Julien Cristau (Sep 03)
Kees Cook
[PATCH] exec argument expansion can inappropriately trigger OOM-killer Kees Cook (Aug 27)
KOSAKI Motohiro
[PATCH 2/4] Revert "oom: deprecate oom_adj tunable" KOSAKI Motohiro (Sep 15)
Re: [PATCH 0/3] execve argument-copying fixes KOSAKI Motohiro (Sep 07)
Re: [PATCH 4/4] oom: don't ignore rss in nascent mm KOSAKI Motohiro (Sep 26)
[PATCH 1/2] oom: don't ignore rss in nascent mm KOSAKI Motohiro (Sep 09)
Re: [PATCH 2/2] execve: check the VM has enough memory at first KOSAKI Motohiro (Sep 15)
Re: [PATCH 2/2] execve: check the VM has enough memory at first KOSAKI Motohiro (Sep 13)
[PATCH 0/2] execve memory exhaust of argument-copying fixes KOSAKI Motohiro (Sep 09)
[PATCH 4/4] oom: don't ignore rss in nascent mm KOSAKI Motohiro (Sep 15)
[PATCH 1/4] oom: remove totalpage normalization from oom_badness() KOSAKI Motohiro (Sep 15)
Re: [PATCH 1/3] setup_arg_pages: diagnose excessive argument size KOSAKI Motohiro (Sep 09)
Re: [PATCH] move cred_guard_mutex from task_struct to signal_struct KOSAKI Motohiro (Sep 15)
[PATCH 0/4] oom fixes for 2.6.36 KOSAKI Motohiro (Sep 15)
Re: [PATCH] exec argument expansion can inappropriately trigger OOM-killer KOSAKI Motohiro (Aug 29)
[PATCH] move cred_guard_mutex from task_struct to signal_struct KOSAKI Motohiro (Sep 10)
Re: [PATCH 1/4] oom: remove totalpage normalization from oom_badness() KOSAKI Motohiro (Sep 16)
Re: [PATCH 1/3] setup_arg_pages: diagnose excessive argument size KOSAKI Motohiro (Sep 10)
[PATCH 3/4] move cred_guard_mutex from task_struct to signal_struct KOSAKI Motohiro (Sep 15)
[PATCH 2/2] execve: check the VM has enough memory at first KOSAKI Motohiro (Sep 09)
Kurt Seifried
Re: CVE request: mantis before 1.2.3 (XSS) Kurt Seifried (Sep 14)
CVE for Intel INTEL-SA-00025 Kurt Seifried (Jul 20)
Re: CVE request: mantis before 1.2.3 (XSS) Kurt Seifried (Sep 14)
Re: CVE Request - ZNC Kurt Seifried (Aug 09)
Re: CVE Request: BGP protocol vulnerability Kurt Seifried (Aug 28)
CVE Request - ZNC Kurt Seifried (Aug 09)
Bugzilla 3.7.1 CVE request Kurt Seifried (Jul 06)
Re: CVE Request -- Linux/SCTP DoS in sctp_packet_config() Kurt Seifried (Sep 26)
CVE request for browser IFRAME/file download DoS Kurt Seifried (Jul 04)
Kyle Bader
Re: CVE id request for non disclosed issue? Kyle Bader (Sep 13)
Linus Torvalds
Re: [PATCH 2/2] execve: check the VM has enough memory at first Linus Torvalds (Sep 16)
Re: [Security] [oss-security] Re: /proc infoleaks Linus Torvalds (Sep 07)
Re: [PATCH 2/2] execve: check the VM has enough memory at first Linus Torvalds (Sep 10)
Ludwig Nussel
Re: CVE request: ghostscript and gv Ludwig Nussel (Aug 25)
Re: CVE request: clamav < 0.96.3 pdf bounds checking Ludwig Nussel (Sep 28)
Re: Qt SSL endless loop Ludwig Nussel (Jul 16)
Re: CVE request: clamav < 0.96.3 pdf bounds checking Ludwig Nussel (Sep 28)
Re: Qt SSL endless loop Ludwig Nussel (Jul 19)
CVE Request: openssl double free Ludwig Nussel (Aug 11)
Re: CVE request: epiphany not checking ssl certs Ludwig Nussel (Sep 20)
Luigi Auriemma
Re: CVE Request -- Mumble server (Murmur) / Qt SQLite -- Remotely exploitable DoS (murmur termination) due QueryUsers Qt SQLite database bug Luigi Auriemma (Jul 02)
Marc Deslauriers
Re: CVE request: ghostscript Marc Deslauriers (Jul 12)
CVE request: ghostscript Marc Deslauriers (Jul 12)
Marc Schoenefeld
CVE assignment notification -- CVE-2010-2474 -- JBossESB Marc Schoenefeld (Jul 23)
Marcus Meissner
Re: CVE request: Apache Axis2 Session Fixation Marcus Meissner (Jul 06)
Re: CVE Request -- libpng v1.4.3 and v1.2.44 -- memory leak while processing PNG image with malformed sCAL chunks Marcus Meissner (Jul 05)
Re: Re: [Security] /proc infoleaks Marcus Meissner (Sep 07)
Re: CVE request - kernel: prevent heap corruption in snd_ctl_new() Marcus Meissner (Sep 29)
Matthias Andree
Request CVE ID for bogofilter base64 decoder heap corruption Matthias Andree (Jul 03)
REPOST: CVE request for bogofilter Matthias Andree (Jul 06)
Matthias Weckbecker
CVE request: lxsession-logout Matthias Weckbecker (Jul 15)
CVE request: Apache Axis2 Session Fixation Matthias Weckbecker (Jul 06)
Matthijs Kooijman
CVE request for OpenTTD Matthijs Kooijman (Jul 20)
Michael Gilbert
Re: CVE request: epiphany not checking ssl certs Michael Gilbert (Sep 17)
Michael Koziarski
Re: CVE request: padding oracle attack: ruby on rails 2.3, owasp esapi Michael Koziarski (Sep 21)
Re: CVE request: padding oracle attack: ruby on rails 2.3, owasp esapi Michael Koziarski (Sep 21)
Mike O'Connor
Re: CVE for Intel INTEL-SA-00025 Mike O'Connor (Jul 21)
Moritz Muehlenhoff
Re: kernel: [PARISC] led.c - fix potential stack overflow in led_proc_write() Moritz Muehlenhoff (Aug 02)
Re: CVE request: Horde Gollem <1.1.2 XSS in view.php Moritz Muehlenhoff (Sep 30)
Re: CVE request: PHP MOPS-2010-56..60 Moritz Muehlenhoff (Aug 23)
Re: kernel: l2tp: Fix oops in pppol2tp_xmit Moritz Muehlenhoff (Jul 04)
Re: Bugzilla 3.7.1 CVE request Moritz Muehlenhoff (Jul 08)
CVE requests: POE::Component::IRC, Alien Arena, Babiloo, Typo3, abcm2ps, ModSecurity, Linux kernel Moritz Muehlenhoff (Sep 27)
Re: CVE request: PHP MOPS-2010-56..60 Moritz Muehlenhoff (Aug 19)
Re: CVE requests: POE::Component::IRC, Alien Arena, Babiloo, Typo3, abcm2ps, ModSecurity, Linux kernel Moritz Muehlenhoff (Sep 29)
CVE requests: Poppler, Quassel, Pyfribidi, Overkill, DocUtils, FireGPG, Wireshark Moritz Muehlenhoff (Sep 29)
Nico Golde
Re: CVE request: lxr Nico Golde (Jul 31)
CVE id request: mapserver Nico Golde (Jul 21)
CVE id request: libc fortify source information disclosure Nico Golde (Aug 25)
Re: Re: Stefan Esser's 0day PHP SysCan flaw Nico Golde (Jul 10)
Niels Heinen
CVE Request: SLiM insecure PATH assignment Niels Heinen (Aug 19)
Oleg Nesterov
Re: [PATCH 4/4] oom: don't ignore rss in nascent mm Oleg Nesterov (Sep 16)
Re: [PATCH] move cred_guard_mutex from task_struct to signal_struct Oleg Nesterov (Sep 10)
pageexec
Re: [PATCH 1/3] setup_arg_pages: diagnose excessive argument size pageexec (Sep 14)
Re: [PATCH 1/3] setup_arg_pages: diagnose excessive argument size pageexec (Sep 14)
Re: [PATCH 1/3] setup_arg_pages: diagnose excessive argument size pageexec (Sep 11)
Re: [PATCH 1/3] setup_arg_pages: diagnose excessive argument size pageexec (Sep 11)
Re: [PATCH 1/3] setup_arg_pages: diagnose excessive argument size pageexec (Sep 14)
Re: [PATCH 1/3] setup_arg_pages: diagnose excessive argument size pageexec (Sep 15)
Pekka Enberg
Re: [PATCH 1/4] oom: remove totalpage normalization from oom_badness() Pekka Enberg (Sep 16)
Péter Veres
Re: CVE Request -- PHP strrchr() Interruption Information Leak Vulnerability Péter Veres (Jul 01)
Pierre Joye
Re: CVE request: PHP MOPS-2010-56..60 Pierre Joye (Aug 20)
Re: CVE request: PHP MOPS-2010-56..60 Pierre Joye (Aug 23)
CVE request, php var_export Pierre Joye (Jul 13)
CVE id request for non disclosed issue? Pierre Joye (Sep 13)
Re: CVE request: PHP MOPS-2010-56..60 Pierre Joye (Aug 24)
Re: CVE request: PHP MOPS-2010-56..60 Pierre Joye (Aug 23)
Re: CVE request: PHP MOPS-2010-56..60 Pierre Joye (Aug 20)
Re: CVE request, php var_export Pierre Joye (Jul 14)
Re: Re: CVE request, php var_export Pierre Joye (Jul 16)
Re: CVE request: PHP MOPS-2010-56..60 Pierre Joye (Aug 20)
Re: Multiple bugs in freetype Pierre Joye (Jul 14)
Re: CVE request: xss in pecl-apc before 3.1.4 Pierre Joye (Sep 14)
pierre.php () gmail com
Re: CVE request: PHP MOPS-2010-56..60 pierre.php () gmail com (Aug 19)
Raphael Geissert
CVE request: mediawiki Raphael Geissert (Jul 28)
znc id: CVE-2010-2448 or CVE-2010-2488? Raphael Geissert (Jul 13)
Re: CVE Request -- Mumble server (Murmur) / Qt SQLite -- Remotely exploitable DoS (murmur termination) due QueryUsers Qt SQLite database bug Raphael Geissert (Jul 02)
CVE request: ZNC NULL pointer dereference Raphael Geissert (Jul 01)
CVE request: zabbix Raphael Geissert (Jul 28)
CVE request: mailscanner, multiple vulnerabilities Raphael Geissert (Sep 11)
CVE request: moin multiple XSS Raphael Geissert (Jul 01)
Re: CVE request: pixelpost Raphael Geissert (Sep 17)
CVE request: XSS in nusoap Raphael Geissert (Sep 03)
CVE request: pixelpost Raphael Geissert (Sep 16)
CVE request: weborf: directory traversal Raphael Geissert (Sep 16)
RFC: changing the behaviour of ld.so(8) regarding empty items on LD_LIBRARY_PATH Raphael Geissert (Sep 28)
Reed Loden
Re: CVE Request 1, NSS 2, Qt: Doesn't handle wildcards in Common Name properly Reed Loden (Sep 03)
Re: Bugzilla 3.7.1 CVE request Reed Loden (Jul 06)
Re: CVE Request 1, NSS 2, Qt: Doesn't handle wildcards in Common Name properly Reed Loden (Sep 03)
Rémi Denis-Courmont
CVE request: VideoLAN advisory 1004 Rémi Denis-Courmont (Aug 11)
Richard Moore
Re: CVE Request 1, NSS 2, Qt: Doesn't handle wildcards in Common Name properly Richard Moore (Sep 05)
Robert Święcki
Multiple bugs in freetype Robert Święcki (Jul 13)
Re: CVE Request -- FreeType -- Memory corruption flaw by processing certain LWFN fonts + three more Robert Święcki (Aug 12)
Re: CVE Request -- FreeType -- Memory corruption flaw by processing certain LWFN fonts + three more Robert Święcki (Aug 09)
Roland McGrath
Re: [PATCH 1/3] setup_arg_pages: diagnose excessive argument size Roland McGrath (Sep 14)
[PATCH 3/3] execve: make responsive to SIGKILL with large arguments Roland McGrath (Sep 07)
Re: [PATCH 1/3] setup_arg_pages: diagnose excessive argument size Roland McGrath (Sep 14)
[PATCH 0/3] execve argument-copying fixes Roland McGrath (Sep 07)
Re: [PATCH 1/2] oom: don't ignore rss in nascent mm Roland McGrath (Sep 10)
[PATCH 2/3] execve: improve interactivity with large arguments Roland McGrath (Sep 07)
Re: [PATCH 1/3] setup_arg_pages: diagnose excessive argument size Roland McGrath (Sep 14)
Re: [PATCH] exec argument expansion can inappropriately trigger OOM-killer Roland McGrath (Aug 30)
Re: [PATCH 1/3] setup_arg_pages: diagnose excessive argument size Roland McGrath (Sep 10)
Re: [PATCH 1/3] setup_arg_pages: diagnose excessive argument size Roland McGrath (Sep 10)
Re: [PATCH] exec argument expansion can inappropriately trigger OOM-killer Roland McGrath (Aug 31)
[PATCH 1/3] setup_arg_pages: diagnose excessive argument size Roland McGrath (Sep 07)
Re: [PATCH 1/3] setup_arg_pages: diagnose excessive argument size Roland McGrath (Sep 14)
Re: [PATCH] exec argument expansion can inappropriately trigger OOM-killer Roland McGrath (Aug 29)
Re: [PATCH 1/3] setup_arg_pages: diagnose excessive argument size Roland McGrath (Sep 10)
Sebastian Krahmer
Re: patch for remote buffer overflows and local message spoofing in mipv6 daemon Sebastian Krahmer (Jul 07)
Re: Re: [Security] [oss-security] Re: /proc infoleaks Sebastian Krahmer (Sep 07)
patch for remote buffer overflows and local message spoofing in mipv6 daemon Sebastian Krahmer (Jul 06)
/proc infoleaks Sebastian Krahmer (Sep 07)
Re: [Security] /proc infoleaks Sebastian Krahmer (Sep 07)
Sébastien Delafond
CVE request: zope-ldapuser Sébastien Delafond (Aug 18)
security curmudgeon
Re: CVE request: Apache Axis2 Session Fixation security curmudgeon (Jul 06)
Solar Designer
Re: Minor security flaw with pam_xauth Solar Designer (Sep 27)
Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability Solar Designer (Aug 17)
Re: Minor security flaw with pam_xauth Solar Designer (Sep 24)
Re: CVE Request: openssl double free Solar Designer (Aug 11)
Re: [PATCH] exec argument expansion can inappropriately trigger OOM-killer Solar Designer (Aug 30)
bzip2 CVE-2010-0405 integer overflow Solar Designer (Sep 21)
Re: [PATCH] exec argument expansion can inappropriately trigger OOM-killer Solar Designer (Aug 29)
Re: Minor security flaw with pam_xauth Solar Designer (Sep 27)
Re: [PATCH] exec argument expansion can inappropriately trigger OOM-killer Solar Designer (Aug 31)
Re: Minor security flaw with pam_xauth Solar Designer (Sep 21)
Re: Minor security flaw with pam_xauth Solar Designer (Sep 21)
Re: [PATCH] exec argument expansion can inappropriately trigger OOM-killer Solar Designer (Aug 30)
Steffen Joeris
CVE id requests: drupal Steffen Joeris (Sep 10)
Stephen Thorne
Re: CVE Request -- Squid v3.1.6 -- DoS (crash) while processing large DNS replies with no IPv6 resolver present Stephen Thorne (Aug 24)
Steven M. Christey
Re: CVE requests: POE::Component::IRC, Alien Arena, Babiloo, Typo3, abcm2ps, ModSecurity, Linux kernel Steven M. Christey (Sep 28)
Re: CVE-2008-id Request -- ssmtp -- standardise() -- Buffer overflow Steven M. Christey (Aug 02)
Re: CVE request: PHP MOPS-2010-56..60 Steven M. Christey (Aug 24)
Re: CVE Request -- phpMyAdmin (x < v3.3.7) -- XSS in setup script (PMASA-2010-7) Steven M. Christey (Sep 08)
Re: Qt SSL endless loop Steven M. Christey (Aug 20)
Re: CVE request - kernel: integer overflow in ext4_ext_get_blocks() Steven M. Christey (Aug 16)
Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove Steven M. Christey (Jul 07)
Re: CVE requests: POE::Component::IRC, Alien Arena, Babiloo, Typo3, abcm2ps, ModSecurity, Linux kernel Steven M. Christey (Sep 28)
Re: CVE request: PHP MOPS-2010-56..60 Steven M. Christey (Aug 20)
Re: CVE Request: mailman Steven M. Christey (Sep 13)
Re: Minor security flaw with pam_xauth Steven M. Christey (Sep 21)
Re: CVE Request -- Python -- accept() implementation in async core is broken => more subcases Steven M. Christey (Sep 24)
Re: Minor security flaw with pam_xauth Steven M. Christey (Aug 16)
Re: CVE request: VLC media player - DLL preloading vulnerability Steven M. Christey (Aug 25)
Re: CVE requests: LibTIFF Steven M. Christey (Jul 01)
Re: CVE-2010-2791: mod_proxy information leak affecting 2.2.9 only Steven M. Christey (Aug 04)
Re: CVE request: padding oracle attack: ruby on rails 2.3, owasp esapi Steven M. Christey (Sep 21)
Re: CVE Request [two ids] -- cabextract -- 1, Infinite loop in MS-ZIP and Quantum decoders (minor) 2, Integer wrap-around (crash) by processing certain *.cab files in test archive mode Steven M. Christey (Aug 04)
Re: CVE id request: libc fortify source information disclosure Steven M. Christey (Aug 31)
Re: CVE request: lxr Steven M. Christey (Aug 20)
Re: CVE Request: BGP protocol vulnerability Steven M. Christey (Aug 31)
Re: CVE-2008-id Request -- ssmtp -- standardise() -- Buffer overflow Steven M. Christey (Aug 19)
Re: CVE Request: mailman Steven M. Christey (Sep 13)
Re: CVE request: epiphany not checking ssl certs Steven M. Christey (Sep 17)
Re: CVE Request -- MySQL v5.1.49 -- multiple DoS flaws Steven M. Christey (Sep 28)
Tetsuo Handa
Re: [PATCH] exec argument expansion can inappropriately triggerOOM-killer Tetsuo Handa (Aug 31)
Thomas Biege
Re: RFC: squid: Fix free memory corruption and off-by-on error when comparing SNMP OIDs Thomas Biege (Aug 13)
RFC: squid: Fix free memory corruption and off-by-on error when comparing SNMP OIDs Thomas Biege (Aug 02)
CVE request: padding oracle attack: ruby on rails 2.3, owasp esapi Thomas Biege (Sep 14)
opera 10.61 fixes 3 security bugs Thomas Biege (Aug 12)
Re: CVE request: PHP MOPS-2010-56..60 Thomas Biege (Aug 24)
CVE Request: heap-based buffer overflow in libHX Thomas Biege (Aug 20)
Re: CVE request: padding oracle attack: ruby on rails 2.3, owasp esapi Thomas Biege (Sep 21)
Tim Brown
Hardening the linker (was Re: [oss-security] CVE request: CouchDB insecure library loading (Debian/Ubuntu only)) Tim Brown (Aug 29)
Re: RFC: changing the behaviour of ld.so(8) regarding empty items on LD_LIBRARY_PATH Tim Brown (Sep 29)
Universal XSS in Rekonq Tim Brown (Jul 21)
Minor security flaw with pam_xauth Tim Brown (Aug 16)
Tomas Hoger
Re: CVE Request 1, NSS 2, Qt: Doesn't handle wildcards in Common Name properly Tomas Hoger (Sep 27)
Re: CVE request: PHP MOPS-2010-56..60 Tomas Hoger (Aug 19)
Re: CVE requests: LibTIFF Tomas Hoger (Jul 01)
Re: CVE request: CouchDB insecure library loading (Debian/Ubuntu only) Tomas Hoger (Aug 26)
Cacti XSS fixes in 0.8.7g Tomas Hoger (Jul 22)
Re: CVE id request: libc fortify source information disclosure Tomas Hoger (Sep 02)
Re: CVE request: PHP MOPS-2010-56..60 Tomas Hoger (Aug 20)
Re: CVE id request: libc fortify source information disclosure Tomas Hoger (Sep 02)
Re: CVE request: PHP MOPS-2010-56..60 Tomas Hoger (Aug 24)
Re: CVE request: epiphany not checking ssl certs Tomas Hoger (Sep 17)
Re: CVE request: ghostscript and gv Tomas Hoger (Jul 19)
Re: CVE request: ghostscript and gv Tomas Hoger (Aug 26)
mikmod incomplete fix for CVE-2009-3995 Tomas Hoger (Jul 23)
Re: CVE request: ghostscript and gv Tomas Hoger (Aug 25)
Re: CVE request: PHP MOPS-2010-56..60 Tomas Hoger (Aug 20)
Valient Gough
Re: CVE Request -- EncFS / fuse-encfs [three ids] -- Multiple Vulnerabilities in EncFS Valient Gough (Sep 06)
Vincent Danen
Re: Minor security flaw with pam_xauth Vincent Danen (Sep 27)
Re: Qt SSL endless loop Vincent Danen (Aug 20)
Re: Qt SSL endless loop Vincent Danen (Jul 16)
Re: Minor security flaw with pam_xauth Vincent Danen (Sep 27)
Re: Qt SSL endless loop Vincent Danen (Jul 19)
Re: CVE request: ghostscript Vincent Danen (Jul 12)
Werner LEMBERG
Re: CVE Request -- FreeType -- Memory corruption flaw by processing certain LWFN fonts + three more Werner LEMBERG (Aug 09)
Re: Another freetype-demos buffer overflow Werner LEMBERG (Jul 23)
Re: CVE Request -- FreeType -- Memory corruption flaw by processing certain LWFN fonts + three more Werner LEMBERG (Aug 09)
Willy Tarreau
Re: [Security] [oss-security] Re: /proc infoleaks Willy Tarreau (Sep 13)
YGN Ethical Hacker Group
CVE ID Request For 2Wire Broadband Router Session Hijacking Vulnerability YGN Ethical Hacker Group (Aug 09)