oss-sec mailing list archives
Re: CVE request: softhsm, softhsm-keyconv tool creates world-readable files
From: Salvatore Bonaccorso <carnil () debian org>
Date: Fri, 20 Jun 2014 08:02:32 +0200
Hello Murray, (keeping the Cc on the bureport to answer this also there): On Fri, Jun 20, 2014 at 03:46:30PM +1000, Murray McAllister wrote: [...]
The Debian bug also notes a similar issue was fixed in ldns - I've asked for more details about that in the bug).
This should be CVE-2014-3209 (dns-keygen generates keys with world readable permissions ). Regards, Salvatore
Current thread:
- CVE request: softhsm, softhsm-keyconv tool creates world-readable files Murray McAllister (Jun 19)
- Re: CVE request: softhsm, softhsm-keyconv tool creates world-readable files Salvatore Bonaccorso (Jun 19)
- Re: CVE request: softhsm, softhsm-keyconv tool creates world-readable files Murray McAllister (Jun 19)
- Re: CVE request: softhsm, softhsm-keyconv tool creates world-readable files Salvatore Bonaccorso (Jun 19)