oss-sec mailing list archives
Re: More CVEs? (was Re: [oss-security] [oCERT-2011-003] multiple implementations denial-of-service via hash algorithm collision)
From: Tomas Hoger <thoger () redhat com>
Date: Fri, 30 Dec 2011 11:26:56 +0100
On Thu, 29 Dec 2011 13:13:42 +0100 Hanno Böck wrote:
Am Wed, 28 Dec 2011 19:07:30 +0100 schrieb Andrea Barisani <lcars () ocert org>:
CVE: CVE-2011-4461 (Jetty), CVE-2011-4838 (JRuby), CVE-2011-4885 (PHP), CVE-2011-4462 (Plone), CVE-2011-4815 (Ruby)Kurt or other CVE assigners, can you please assign a bunch for python, java, tomcat etc. pp.
Few already assigned: ASP.NET http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3414 Apache Geronimo http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-5034 Oracle Glassfish http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-5035 Rack http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-5036 Google V8 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-5037 -- Tomas Hoger / Red Hat Security Response Team
Current thread:
- [oCERT-2011-003] multiple implementations denial-of-service via hash algorithm collision Andrea Barisani (Dec 28)
- More CVEs? (was Re: [oss-security] [oCERT-2011-003] multiple implementations denial-of-service via hash algorithm collision) Hanno Böck (Dec 29)
- Re: More CVEs? (was Re: [oss-security] [oCERT-2011-003] multiple implementations denial-of-service via hash algorithm collision) Kurt Seifried (Dec 29)
- Re: More CVEs? (was Re: [oss-security] [oCERT-2011-003] multiple implementations denial-of-service via hash algorithm collision) David Jorm (Dec 29)
- Re: More CVEs? (was Re: [oss-security] [oCERT-2011-003] multiple implementations denial-of-service via hash algorithm collision) Tomas Hoger (Dec 30)
- More CVEs? (was Re: [oss-security] [oCERT-2011-003] multiple implementations denial-of-service via hash algorithm collision) Hanno Böck (Dec 29)
- Re: [oCERT-2011-003] multiple implementations denial-of-service via hash algorithm collision Solar Designer (Dec 29)
- Re: [oCERT-2011-003] multiple implementations denial-of-service via hash algorithm collision Andrea Barisani (Dec 29)
- Re: [oCERT-2011-003] multiple implementations denial-of-service via hash algorithm collision Solar Designer (Dec 31)