oss-security February 2011 archive
Main Archive Page > Month Archives  > oss-security archives
oss-security: [oss-security] CVE requests: freebsd kernel/tesser

[oss-security] CVE requests: freebsd kernel/tesseract/xinha/proftpd

From: Moritz Muehlenhoff <jmm_at_nospam>
Date: Mon Feb 21 2011 - 18:39:52 GMT
To: oss-security@lists.openwall.com

Hi,
Please assign CVE IDs for the following issues from the Debian
Security Tracker:

1. FreeBSD kernel: local DoS
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=613312
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=611476
http://www.exploit-db.com/exploits/16064/
http://svn.debian.org/wsvn/glibc-bsd/branches/squeeze/kfreebsd-8/debian/patches/000_tcp_usrreq.diff

2. Xinha: Multiple vulnerabilities
(The code is included in a few web apps, e.g. serendipity, openacs or dotlrn)
http://secunia.com/advisories/40669/

3. tesseract: Insecure temp file handling
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=612032

4. proftpd mod_sftp integer overflow
http://bugs.proftpd.org/show_bug.cgi?id=3586
http://www.exploit-db.com/exploits/16129/

Cheers,
        Moritz