oss-sec mailing list archives

CVE request for bitlebee

From: David Black <disclosure () d1b org>
Date: Mon, 19 Mar 2012 21:34:14 +1100

A few months ago it was reported that Bitlbee did not drop extra
groups(in unix.c) that the process launching it had.
There hasn't been a CVE assigned to this issue, so I thought I would
follow up and request one.
The original report can be found at
http://bugs.bitlbee.org/bitlbee/ticket/852 and it was fixed in
http://bugs.bitlbee.org/bitlbee/changeset/devel%2C856.

--
Thank you.

Current thread:

CVE request for bitlebee David Black (Mar 19)
- Re: CVE request for bitlebee Kurt Seifried (Mar 19)