oss-sec mailing list archives
Re: Request for CVE Identifier: bzexe insecure temporary file
From: Kurt Seifried <kseifried () redhat com>
Date: Fri, 28 Oct 2011 11:58:19 -0600
On 10/28/2011 07:10 AM, vladz wrote:
Hi, On Fri, Oct 28, 2011 at 02:22:13PM +0200, Hanno Böck wrote:Am Fri, 28 Oct 2011 07:48:16 -0400 (EDT) schrieb Ramon de C Valle <rcvalle () redhat com>:This is a security issue reported by vladz in bzexe. This is a low impact security issue, since bzexe is rarely used and the race condition window is very narrow, but still exploitable.
Please use CVE-2011-4089 for this issue. -- -Kurt Seifried / Red Hat Security Response Team
Current thread:
- Request for CVE Identifier: bzexe insecure temporary file Ramon de C Valle (Oct 28)
- Re: Request for CVE Identifier: bzexe insecure temporary file Hanno Böck (Oct 28)
- Re: Request for CVE Identifier: bzexe insecure temporary file Ramon de C Valle (Oct 28)
- Re: Request for CVE Identifier: bzexe insecure temporary file Benjamin Renaut (Oct 28)
- Re: Request for CVE Identifier: bzexe insecure temporary file vladz (Oct 28)
- Re: Request for CVE Identifier: bzexe insecure temporary file Kurt Seifried (Oct 28)
- Re: Request for CVE Identifier: bzexe insecure temporary file vladz (Nov 06)
- Re: Request for CVE Identifier: bzexe insecure temporary file Hanno Böck (Oct 28)