Home
Reading
Searching
Subscribe
Sponsors
Statistics
Posting
Contact
Spam
Lists
Links
About
Hosting
Filtering
Features Download
Marketing
Archives
FAQ
Blog
 
Gmane
From: Josh Bressers <bressers-H+wXaHxf7aLQT0dZR+AlfA <at> public.gmane.org>
Subject: Re: CVE request: patch directory traversal flaw
Newsgroups: gmane.comp.security.oss.general
Date: Thursday 6th January 2011 20:52:09 UTC (over 6 years ago)
Please use CVE-2010-4651.

Thanks.

-- 
    JB

----- Original Message -----
> We got a heads up on a directory traversal flaw in patch. I don't
> think
> a CVE name has been assigned to it; could we get one? It allows for
> the
> creation of arbitrary files in unexpected places due to the use of
> '..'.
> 
> References:
> 
> https://bugzilla.redhat.com/show_bug.cgi?id=667529
> http://osdir.com/ml/bug-patch-gnu/2010-12/msg00000.html
> 
> Thanks.
> 
> --
> Vincent Danen / Red Hat Security Response Team
 
CD: 3ms