Re: CVE Request: programming error in crypt(3)

[Kurt Seifried <kseifried () redhat com>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

CVE-2012-2143On 04/26/2012 03:36 PM, Xin Li wrote:
> Hi,
>
> I'd like to request a CVE number for a programming error in
> FreeBSD's crypt(3) implementation, which prevents it from
> generating a right hash from input in certain circumstances.
>
> We will publish the details in an upcoming advisory.
>
> Thanks in advance!
>
> Cheers,

Please use CVE-2012-2143 for this issue.

- -- 
Kurt Seifried Red Hat Security Response Team (SRT)
PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQIbBAEBAgAGBQJPmeY8AAoJEBYNRVNeJnmTaWIP9j8Bvajlg4HkBr4lCOTF4kYx
dFIazJuzfYnGqvK4E2KzjFNuJL/Ch59hf9mBSBeGGRIMHtoCpR3o1zg0yqFE6ZHA
ZKLFDLkBFzU3sL3PhZzKQiXMNaQYm3kFWsOfFkOsrX26NJoWn69uH0Iy2tDF07Aw
R2zUtc4w9BkmPWFLKfrYgSrO36Khic2yH/eAM9/S6hOOlxfnNsUOZDOf/SaIn5y7
lqUl4JEMqr+5Tm4PYVXvN0P16VlM5oxibyF3RWdew7XJeeg1SKJLZb1vGuEnN42Y
WcbK1gIEE9SoRMG32sCi5egs2CmYfFYXj1jQwlmbUv+UvXsvXiE5akB/D1ziWy/x
Yh/a+TucjKblvrqfy/5tlbbQKDxdoAPwWcMnQidOY7mPqVl3tWFAglAtIRcPT95p
jWjIDHv8jxZzXp4qEy1riXJ6Ov5D6PfGNCmg9vbZmlLlXGBEpNXievLSgDUDVDBg
CxCea1uwqoHtwID+jRyE47qCgwngSwVDO0esp1y/HEKCPrH2uSPdKMZkzp8RQua+
WoT3uURtzDag0kfv/MhnAx0BvF20/OYFAgsYbh1IMbc9avEFIpvFflYuQW0rCgHK
uq5sWOpjGimAnflIW8AZn6p+4h/DKFTRSmb7uY6x/ZkqFOHfRVcIYwH1gdm8IBWo
zkYRipsGSnFb231WVo4=
=jy5G
-----END PGP SIGNATURE-----