oss-sec mailing list archives
Re: CVE for PyYAML RCE-factory API
From: Alex Gaynor <alex.gaynor () gmail com>
Date: Wed, 27 Jun 2018 07:58:05 -0400
Thanks -- this issue was assigned CVE-2017-18342. Alex On Tue, Jun 26, 2018 at 11:32 PM Seth Arnold <seth.arnold () canonical com> wrote:
On Tue, Jun 26, 2018 at 09:18:39PM -0400, Alex Gaynor wrote:Because of the degree to which this API presented a footgun, I would like to request a CVE for it.This makes sense to me. You can make CVE requests on: https://cveform.mitre.org/ Thanks
-- "I disapprove of what you say, but I will defend to the death your right to say it." -- Evelyn Beatrice Hall (summarizing Voltaire) "The people's good is the highest law." -- Cicero GPG Key fingerprint: D1B3 ADC0 E023 8CA6
Current thread:
- CVE for PyYAML RCE-factory API Alex Gaynor (Jun 26)
- Re: CVE for PyYAML RCE-factory API Seth Arnold (Jun 26)
- Re: CVE for PyYAML RCE-factory API Alex Gaynor (Jun 27)
- Re: CVE for PyYAML RCE-factory API Seth Arnold (Jun 26)