oss-sec mailing list archives

Re: Authentication vulnerabilities in OpenBSD

From: Renaud Allard <renaud () allard it>
Date: Thu, 5 Dec 2019 12:23:36 +0100



On 12/5/19 11:44 AM, Georgi Guninski wrote:

On Wed, Dec 4, 2019 at 10:51 PM Qualys Security Advisory <qsa () qualys com> wrote:



Qualys Security Advisory

Authentication vulnerabilities in OpenBSD


openbsd doesn't count these as remote holes in default install, right?

Their front page still says:
Only two remote holes in the default install, in a heck of a long time!


Obviously, since that vulnerability is not present remotely by default.

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

Current thread:

Authentication vulnerabilities in OpenBSD Qualys Security Advisory (Dec 04)
- Re: Authentication vulnerabilities in OpenBSD Solar Designer (Dec 04)
- Re: Authentication vulnerabilities in OpenBSD Georgi Guninski (Dec 05)
  - Re: Authentication vulnerabilities in OpenBSD Renaud Allard (Dec 05)
  - Re: Authentication vulnerabilities in OpenBSD Arrigo Triulzi (Dec 05)