oss-sec mailing list archives
Re: ATutor CVE-2017-1000002, CVE-2017-1000003, CVE-2017-1000004
From: Matthew Daley <mattd () bugfuzz com>
Date: Wed, 19 Jul 2017 23:37:28 +1200
JFTR: On 17 July 2017 at 00:01, Henri Salo <henri () nerv fi> wrote:
Is this assigment somehow related to this oss-security post? http://www.openwall.com/lists/oss-security/2016/07/01/3
Yes. CVE-2017-1000002 = issues #26 and #32 CVE-2017-1000003 = issues #29 to #31 CVE-2017-1000004 = issues #1 to #25, #27 and #28 (but issue #25 should probably be in CVE-2017-1000003 as it's a missing auth check, not a SQL injection) HTH, - Matthew
Current thread:
- ATutor CVE-2017-1000002, CVE-2017-1000003, CVE-2017-1000004 Henri Salo (Jul 16)
- Re: ATutor CVE-2017-1000002, CVE-2017-1000003, CVE-2017-1000004 Matthew Daley (Jul 19)
- Re: ATutor CVE-2017-1000002, CVE-2017-1000003, CVE-2017-1000004 Henri Salo (Jul 19)
- Re: Re: ATutor CVE-2017-1000002, CVE-2017-1000003, CVE-2017-1000004 Kurt Seifried (Jul 19)
- Re: ATutor CVE-2017-1000002, CVE-2017-1000003, CVE-2017-1000004 Henri Salo (Jul 19)
- Re: ATutor CVE-2017-1000002, CVE-2017-1000003, CVE-2017-1000004 Henri Salo (Jul 23)
- Re: ATutor CVE-2017-1000002, CVE-2017-1000003, CVE-2017-1000004 Matthew Daley (Jul 19)