[oss-security] CVE Request: libsdp

Hi,

Leif Nixon reported that libsdp is vulnerable to insecure log file
handling. This is fixed by the latest libsdp version available at:

http://www.openfabrics.org/downloads/libsdp/libsdp-1.1.105-0.4.g1b9b996.tar.gz

More details are available in Red Hat bugzilla:
https://bugzilla.redhat.com/show_bug.cgi?id=647941

Can a CVE id be please assigned to this flaw?

Thanks.

-- Huzaifa Sidhpurwala / Red Hat Security Response Team

• This message: [ Message body ]
• Next message: Pierre Joye: "[oss-security] Re: utf-8 security issue in php - 2 CVEs?"
• Previous message: Huzaifa Sidhpurwala: "[oss-security] utf-8 security issue in php - 2 CVEs?"
• Next in thread: Josh Bressers: "Re: [oss-security] CVE Request: libsdp"
• Reply: Josh Bressers: "Re: [oss-security] CVE Request: libsdp"

• Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]