oss-sec mailing list archives

Re: vsftpd download backdoored

From: Josh Bressers <bressers () redhat com>
Date: Mon, 11 Jul 2011 13:53:21 -0400 (EDT)

----- Original Message -----

On Tue, Jul 05, 2011 at 08:30:57PM +0800, Eugene Teo wrote:


But with a CVE name, it is easier for people to refer to this issue,
and also easier for distributions to publish an official statement.


Your reasoning makes sense to me.

I have no objections to having a CVE ID assigned to this issue, but I
have no idea what the policy is on such assignments.


Use CVE-2011-2523.

Thanks.

-- 
    JB

Current thread:

Re: vsftpd download backdoored, (continued)
- - - Re: vsftpd download backdoored Solar Designer (Jul 04)
    - Re: vsftpd download backdoored HD Moore (Jul 04)
    - Re: vsftpd download backdoored Solar Designer (Jul 04)
    - Re: vsftpd download backdoored Solar Designer (Jul 04)
    - Re: vsftpd download backdoored HD Moore (Jul 04)
    - Re: vsftpd download backdoored Solar Designer (Jul 04)
    - Re: vsftpd download backdoored Matthias Andree (Jul 05)
    - Re: vsftpd download backdoored Chris Evans (Jul 06)
    - Re: vsftpd download backdoored Eugene Teo (Jul 05)
    - Re: vsftpd download backdoored Solar Designer (Jul 05)
    - Re: vsftpd download backdoored Josh Bressers (Jul 11)