oss-sec mailing list archives

Re: CVE request: davfs2 - Unsecure use of system()

From: Kurt Seifried <kseifried () redhat com>
Date: Wed, 18 Sep 2013 14:44:07 -0600

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 09/17/2013 02:13 AM, Luciano Bello wrote:

Hi, A security vulnerability have been reported in davfs2 
http://bugs.debian.org/723034

Please, assign a CVE id.

Thanks, luciano


Please use CVE-2013-4362 for this issue.

- -- 
Kurt Seifried Red Hat Security Response Team (SRT)
PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (GNU/Linux)
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=/TP2
-----END PGP SIGNATURE-----

Current thread:

CVE request: davfs2 - Unsecure use of system() Luciano Bello (Sep 17)
- Re: CVE request: davfs2 - Unsecure use of system() Salvatore Bonaccorso (Sep 17)
- Re: CVE request: davfs2 - Unsecure use of system() Tavis Ormandy (Sep 18)
  - Re: Re: CVE request: davfs2 - Unsecure use of system() Tim (Sep 18)
- Re: CVE request: davfs2 - Unsecure use of system() Kurt Seifried (Sep 18)