oss-security - Re: Re: CVE Request -- Wireshark: Upstream v1.8.7, v1.6.15 fixes

Follow @Openwall on Twitter for new release announcements and other news

[<prev] [next>] [<thread-prev] [day] [month] [year] [list]

Message-ID: <519A9756.9060203@redhat.com>
Date: Mon, 20 May 2013 15:36:22 -0600
From: Kurt Seifried <kseifried@...hat.com>
To: oss-security@...ts.openwall.com
CC: cve-assign@...re.org, jlieskov@...hat.com
Subject: Re: Re: CVE Request -- Wireshark: Upstream v1.8.7,
 v1.6.15 fixes

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 05/20/2013 01:26 PM, cve-assign@...re.org wrote:
>> Wireshark upstream has released 1.8.7, 1.6.15 versions, 
>> correcting multiple security flaws:
> 
> Wireshark upstream sends advance requests for CVE assignments to
> MITRE (for these releases and apparently all other releases in the
> past year or more). MITRE will be sending our 1.8.7/1.6.15 CVE
> assignments to oss-security also, almost certainly today.

So just to confirm: ALL wireshark CVEs are handled by upstream sending
a request direct to Mitre? Cool by me.


- -- 
Kurt Seifried Red Hat Security Response Team (SRT)
PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.13 (GNU/Linux)
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=vfsO
-----END PGP SIGNATURE-----

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.