oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Re: CVE Status Clarification / Request -- kadu: Stored XSS by parsing contact's status and sms messages in history

From: cve-assign () mitre org
Date: Wed, 29 Feb 2012 13:37:43 -0500 (EST)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


So is this kadu issue now CVE-2012-1410 or CVE-2012-1092?


We've updated the CVE public web site with the information about the
Kadu issue and the unrelated OpenSSL issue. It includes:

CVEs to use:
Kadu     http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1410
OpenSSL  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-7250


Rejected CVEs:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1091
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1092
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-7248
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-7249

- -- 
CVE assignment team, MITRE CVE Numbering Authority
M/S S145
202 Burlington Road, Bedford, MA 01730 USA
[ PGP key available through http://cve.mitre.org/cve/obtain_id.html ]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (SunOS)

iQEcBAEBAgAGBQJPTm8GAAoJEGvefgSNfHMdjUUIAKc04oaHCbGwyXC3iUgMP4KV
hG+c74gSOZeAHw50iFT5pz+q5o8gx2YYjt+epPITpQm8akrBLc6H46sRJ9HJ870j
l572tyiTfJ/mQfrGeA/CRtcyBad4Dgux8h+Y4rzQW++eZgt2KpL3YGbd+IpeBkRa
L7h/yT8uKZ1KX/BbIPP1WbedPloxzzTWafRfPNXnOjAmZmcV5u8/cFoSEjmWNZLJ
+p7gpsynZxF/9z3emFSMfxs6A6DZsZpqyXpf3sjScrJWgcHscKcWWamfOL4DOsen
FYjG79w1qU93WPpjbbr8Bl2Ysy+dUwkMMM2qDBI6rX3HC9mCyH+qQe/DKb5CyaI=
=ea9e
-----END PGP SIGNATURE-----
Previous By Date Next
Previous By Thread Next

Current thread: