|
Message-ID: <4FBD284F.5060809@redhat.com> Date: Wed, 23 May 2012 12:11:27 -0600 From: Kurt Seifried <kseifried@...hat.com> To: oss-security@...ts.openwall.com Subject: Re: CVE request: Multiple vulnerabilities in LogAnalyzer -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 05/23/2012 06:13 AM, Filippo Cavallarin wrote: > Hello, Can I get a CVE identifier for this issue: > > http://www.codseq.it/advisories/multiple_vulnerabilities_in_loganalyzer > > Here is the changelog > > http://loganalyzer.adiscon.com/news/loganalyzer-v3-4-3-v3-stable-released > > Thanks, > > Filippo Cavallarin > > > C o d S e q Development with an eye on security > ------------------------------------------------------------------------ > > Castello 2005, 30122 Venezia > Tel: 041 88 761 58 - Fax: 041 81 064 714 - Cell: 346 66 93 254 c.f. > CVLFPP82B27L736J - p.iva 03737650279 http://www.codseq.it - > filippo.cavallarin@...seq.it Can you confirm that the config.php has sensitive information within it? - -- Kurt Seifried Red Hat Security Response Team (SRT) PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQIcBAEBAgAGBQJPvShPAAoJEBYNRVNeJnmTn7wP/RQ3HePcA+MniyxdVxad8XIJ Lui61HW0cEOeK7vPx+5D1KBdV09U4P9wI/73ql1lvFo2OvtqsyNEQLn0JBXgBdHv ybKi6obhk374xmr+zlWMBbt983S/A4BxuYFWuU0dCQA6jm7rAM1wQRutuBSIdzx8 3iLQr/LVAHkJFxKIjHvpZerDHW+Nh/+SLS2cMLDBXNGFnhJD1RyJlT4ZDgszdyFW A6sKwz+O4p4L3XIcLjHjzwiwBcirzzyBphY/bh/b+WTsAM3IbDHrNcAl5nUyAKBf 6M+Up8LhFDLlEzHqLHQUr3fenAxVrz4PHS1RGlspeE8jWCz/FtnFbWxqYiTDvTUi JbJpB33bVmM8NEdZds9hF+y+h0TyF0Y2JadU3fAdbLaMnWQyH6lxNYntQnWoEOI1 KGKzP3vVPdFwyXIa2PWfiz9EHrFOScH/fXMX65e3pybxMHvUyisnJNw/khBImQLW BRu0Lh+cVvsUwkr0tX/GxmbeR7pVakgcRp09ihGto7CwtIXOpEJ4pqrqCjHJRKM+ vJ7HUR72cuGriAaHrAwPWGu2UM8G7niXerGrn6YBcRos3zgIIMa9YKQCVqR8DhLd NH9WH4vhgF1cMHRaU6Az2uZx34nWYGNw59x2eO6H6uRWrN6cREVhxTXf6QtQOv4m wrTY5Ael++jgxy7++Pjq =j8ar -----END PGP SIGNATURE-----
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.