oss-sec mailing list archives
Re: CVE oops in GLSA 201308-05 (wireshark)
From: Sergey Popov <pinkbyte () gentoo org>
Date: Thu, 29 Aug 2013 10:15:01 +0400
28.08.2013 19:24, Vincent Danen пишет:
I just saw via a Gentoo bug report that their GLSA 201308-05 advisory
mentioned some CVEs as related to wireshark that were incorrect.
Instead of mentioning CVE-2013-{3560,3561,3562} they mentioned
CVE-2013-{3540,3541,3542}. I checked on MITRE's site and those three
are still reserved.
I don't know who those three (354[012]) are assigned to, but you might
want to see if they've been used already or not and dupe them against
356[012] if they have not.
See:
http://www.net-security.org/advisory.php?id=16517
https://bugs.gentoo.org/show_bug.cgi?id=482794
Thanks.
That was my mistake and i am truly sorry about it. Our GLSA will be fixed soon, but i can not undo sent mail to gentoo-announce@ :-( -- Best regards, Sergey Popov Gentoo developer Gentoo Desktop Effects project lead Gentoo Qt project lead Gentoo Proxy maintainers project lead
Attachment:
signature.asc
Description: OpenPGP digital signature
Current thread:
- CVE oops in GLSA 201308-05 (wireshark) Vincent Danen (Aug 28)
- Re: CVE oops in GLSA 201308-05 (wireshark) cve-assign (Aug 28)
- Re: Re: CVE oops in GLSA 201308-05 (wireshark) Vincent Danen (Aug 28)
- Re: Re: CVE oops in GLSA 201308-05 (wireshark) Alex Legler (Aug 29)
- Re: Re: CVE oops in GLSA 201308-05 (wireshark) Vincent Danen (Aug 29)
- Re: Re: CVE oops in GLSA 201308-05 (wireshark) Vincent Danen (Aug 28)
- Re: CVE oops in GLSA 201308-05 (wireshark) cve-assign (Aug 28)
- Re: CVE oops in GLSA 201308-05 (wireshark) Sergey Popov (Aug 29)