oss-sec mailing list archives

Re: CVE request: davfs2 - Unsecure use of system()

From: Tavis Ormandy <taviso () cmpxchg8b com>
Date: Tue, 17 Sep 2013 20:43:28 -0700

Luciano Bello <luciano () debian org> wrote:

Hi,
   A security vulnerability have been reported in davfs2 
http://bugs.debian.org/723034

Please, assign a CVE id.

Thanks, luciano


I feel obliged to point at this ;-)

http://article.gmane.org/gmane.comp.shells.dash/841

Tavis.


-- 
-------------------------------------
taviso () cmpxchg8b com | pgp encrypted mail preferred
-------------------------------------------------------

Current thread:

CVE request: davfs2 - Unsecure use of system() Luciano Bello (Sep 17)
- Re: CVE request: davfs2 - Unsecure use of system() Salvatore Bonaccorso (Sep 17)
- Re: CVE request: davfs2 - Unsecure use of system() Tavis Ormandy (Sep 18)
  - Re: Re: CVE request: davfs2 - Unsecure use of system() Tim (Sep 18)
- Re: CVE request: davfs2 - Unsecure use of system() Kurt Seifried (Sep 18)