oss-sec mailing list archives

CVE requests: freebsd kernel/tesseract/xinha/proftpd

From: Moritz Muehlenhoff <jmm () debian org>
Date: Mon, 21 Feb 2011 19:39:52 +0100

Hi,
Please assign CVE IDs for the following issues from the Debian
Security Tracker:

1. FreeBSD kernel: local DoS
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=613312
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=611476
http://www.exploit-db.com/exploits/16064/
http://svn.debian.org/wsvn/glibc-bsd/branches/squeeze/kfreebsd-8/debian/patches/000_tcp_usrreq.diff

2. Xinha: Multiple vulnerabilities
(The code is included in a few web apps, e.g. serendipity, openacs or dotlrn)
http://secunia.com/advisories/40669/

3. tesseract: Insecure temp file handling
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=612032

4. proftpd mod_sftp integer overflow
http://bugs.proftpd.org/show_bug.cgi?id=3586
http://www.exploit-db.com/exploits/16129/

Cheers,
        Moritz

Current thread:

CVE requests: freebsd kernel/tesseract/xinha/proftpd Moritz Muehlenhoff (Feb 21)
- Re: CVE requests: freebsd kernel/tesseract/xinha/proftpd Josh Bressers (Feb 23)
- Re: CVE requests: freebsd kernel/tesseract/xinha/proftpd Steven M. Christey (Mar 02)