oss-sec mailing list archives

Re: [PATCH] implement privmode support in dash

From: Tavis Ormandy <taviso () google com>
Date: Fri, 23 Aug 2013 01:36:52 -0700

On Thu, Aug 22, 2013 at 8:31 PM, Kurt Seifried <kseifried () redhat com> wrote:


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 08/22/2013 11:59 AM, Tavis Ormandy wrote:

Here is a related blog post on the topic
http://blog.cmpxchg8b.com/2013/08/security-debianisms.html

If you care about tracking vulnerabilities, the vmware issue is
called CVE-2013-1662.


Do we need one for Debian as well? Seems like a strong maybe.


I think it would be a good idea, it seems similar to something like
CVE-2009-2695 which was a mitigation being disabled.

Tavis.

Current thread:

Re: [PATCH] implement privmode support in dash, (continued)
- Re: [PATCH] implement privmode support in dash Harald van Dijk (Aug 22)
  - Re: [PATCH] implement privmode support in dash Tavis Ormandy (Aug 22)
  - Re: [PATCH] implement privmode support in dash Jilles Tjoelker (Aug 22)
    - Re: [PATCH] implement privmode support in dash Tavis Ormandy (Aug 22)
    - Re: [PATCH] implement privmode support in dash Jérémie Courrèges-Anglas (Aug 23)
    - Re: [PATCH] implement privmode support in dash Jérémie Courrèges-Anglas (Aug 23)
    - Re: [PATCH] implement privmode support in dash Roy (Aug 23)
- Re: [PATCH] implement privmode support in dash Kurt Seifried (Aug 22)
  - Re: [PATCH] implement privmode support in dash Seth Arnold (Aug 22)
    - Re: [PATCH] implement privmode support in dash Michael Samuel (Aug 22)
  - Re: [PATCH] implement privmode support in dash Tavis Ormandy (Aug 23)
  - Re: [PATCH] implement privmode support in dash Florian Weimer (Aug 23)
- Re: [PATCH] implement privmode support in dash Tim Brown (Aug 23)