Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <Pine.GSO.4.51.0909110816440.2747@faron.mitre.org>
Date: Fri, 11 Sep 2009 08:20:15 -0400 (EDT)
From: "Steven M. Christey" <coley@...us.mitre.org>
To: Tomas Hoger <thoger@...hat.com>
cc: oss-security@...ts.openwall.com, coley@...us.mitre.org
Subject: Re: CVE id request: silc-toolkit


On Fri, 11 Sep 2009, Tomas Hoger wrote:

> On Thu, 3 Sep 2009 12:45:46 -0400 (EDT) "Steven M. Christey"
> <coley@...us.mitre.org> wrote:
>
> > Use CVE-2009-3051 for both of these format strings, to be filled in
> > later.
>
> Looks like this actually got split to two after all...
>
> CVE-2009-3051:

Sorry for forgetting to tell everyone about this.  One of our CVE analysts
did some deeper investigation and noticed that there was a clear break in
affected versions, so we decided that a split was reasonable.  This
distinction wasn't immediately obvious to me when processing the initial
ID request.

- Steve

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.