oss-sec mailing list archives
Re: Wrong MLIST link in CVE-2011-3783
From: "Steven M. Christey" <coley () rcf-smtp mitre org>
Date: Mon, 17 Oct 2011 15:01:23 -0400 (EDT)
We generally strive to include the first public announcement from the researcher as a reference in all CVEs. In this case, http://www.openwall.com/lists/oss-security/2011/06/27/6 was the first (vague) announcement that a lot of path-disclosure issues existed in multiple products, so it is included in the various CVEs that were created as a result of examining the http://code.google.com/p/inspathx/source/browse/#svn%2Ftrunk%2Fpaths_vuln that was mentioned in that MLIST.
- Steve
Current thread:
- Wrong MLIST link in CVE-2011-3783 Henri Salo (Oct 16)
- Re: Wrong MLIST link in CVE-2011-3783 Henri Salo (Oct 16)
- Re: Wrong MLIST link in CVE-2011-3783 Eugene Teo (Oct 16)
- Re: Wrong MLIST link in CVE-2011-3783 Steven M. Christey (Oct 17)
- Re: Wrong MLIST link in CVE-2011-3783 Henri Salo (Oct 16)