oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

CVE Request: libsdp

From: Huzaifa Sidhpurwala <huzaifas () redhat com>
Date: Tue, 16 Nov 2010 12:14:09 +0530
Hi,

Leif Nixon reported that libsdp is vulnerable to insecure log file
handling. This is fixed by the latest libsdp version available at:

http://www.openfabrics.org/downloads/libsdp/libsdp-1.1.105-0.4.g1b9b996.tar.gz

More details are available in Red Hat bugzilla:
https://bugzilla.redhat.com/show_bug.cgi?id=647941

Can a CVE id be please assigned to this flaw?

Thanks.

-- 
Huzaifa Sidhpurwala / Red Hat Security Response Team
Previous By Date Next
Previous By Thread Next

Current thread: