oss-sec mailing list archives
Request for CVE Identifier: bzexe insecure temporary file
From: Ramon de C Valle <rcvalle () redhat com>
Date: Fri, 28 Oct 2011 07:48:16 -0400 (EDT)
This is a security issue reported by vladz in bzexe. This is a low impact security issue, since bzexe is rarely used and the race condition window is very narrow, but still exploitable. http://lists.grok.org.uk/pipermail/full-disclosure/2011-October/083701.html http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=632862 Can a CVE Identifier be assigned to this issue? -- Ramon de C Valle / Red Hat Security Response Team
Current thread:
- Request for CVE Identifier: bzexe insecure temporary file Ramon de C Valle (Oct 28)
- Re: Request for CVE Identifier: bzexe insecure temporary file Hanno Böck (Oct 28)
- Re: Request for CVE Identifier: bzexe insecure temporary file Ramon de C Valle (Oct 28)
- Re: Request for CVE Identifier: bzexe insecure temporary file Benjamin Renaut (Oct 28)
- Re: Request for CVE Identifier: bzexe insecure temporary file vladz (Oct 28)
- Re: Request for CVE Identifier: bzexe insecure temporary file Kurt Seifried (Oct 28)
- Re: Request for CVE Identifier: bzexe insecure temporary file vladz (Nov 06)
- Re: Request for CVE Identifier: bzexe insecure temporary file Hanno Böck (Oct 28)