oss-sec mailing list archives
Re: CVE request: Curl insecure usage
From: Moritz Muehlenhoff <jmm () debian org>
Date: Wed, 26 Dec 2012 12:38:19 +0100
On Thu, Nov 29, 2012 at 10:44:36PM +0100, Moritz Mühlenhoff wrote:
Also can someone collate and post a list of all the other apps using curl insecurely and need CVE's with appropriate links to the upstreams/etc? Thanks.There are some, which are potentially affected, but where discussion with upstream is still pending.
Here are two more, please assign CVE IDs (both discovered by Alessandro Ghedini): 1. Falcon programming language: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696681 2. NuSOAP PHP package: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696707 Cheers, Moritz
Current thread:
- CVE request: Curl insecure usage Moritz Muehlenhoff (Nov 26)
- Re: CVE request: Curl insecure usage Kurt Seifried (Nov 26)
- Re: CVE request: Curl insecure usage Steven M. Christey (Nov 27)
- Re: CVE request: Curl insecure usage Kurt Seifried (Nov 28)
- Re: CVE request: Curl insecure usage Kurt Seifried (Nov 28)
- Re: CVE request: Curl insecure usage Fabian Keil (Nov 29)
- Re: CVE request: Curl insecure usage Moritz Mühlenhoff (Nov 29)
- Re: CVE request: Curl insecure usage Moritz Muehlenhoff (Dec 26)
- Re: CVE request: Curl insecure usage Kurt Seifried (Dec 27)
- Re: CVE request: Curl insecure usage Steven M. Christey (Nov 27)
- Re: CVE request: Curl insecure usage Kurt Seifried (Nov 26)