On Fr 03 Apr 2015 19:12:00 CEST, Moritz Mühlenhoff wrote:
On Fri, Apr 03, 2015 at 07:04:23PM +0200, Mike Gabriel wrote:Package: caja Version: 1.8.2-3 Followup-For: Bug #781608 Control: severity -1 serious Control: forwarded -1 https://github.com/mate-desktop/caja/issues/398 Dear Kees, dear Debian Security Team, @Kees: Thanks for bringing up this issue. I actually think that the issue is more severe than just "normal", so raising severity on this. @Security Team: I'd like to receive advise on this issue. Is it actually appropriate to file a CVE for what Kees describes in his original post [1]?This deserves a CVE ID, but we cannot issue one from the Debian pool (which can only be used for issues not yet public). Since this is already in the Debian BTS, please request one on the oss-security mailing list: https://github.com/RedHatProductSecurity/CVE-HOWTO This will also keep other distros posted. Cheers, Moritz
Moritz, thanks!CVE request has been sent to the oss-security mailing list. Will post the CVE ID, once I have a reply from them.
Mike -- DAS-NETZWERKTEAM mike gabriel, herweg 7, 24357 fleckeby fon: +49 (1520) 1976 148 GnuPG Key ID 0x25771B31 mail: mike.gabr...@das-netzwerkteam.de, http://das-netzwerkteam.de freeBusy: https://mail.das-netzwerkteam.de/freebusy/m.gabriel%40das-netzwerkteam.de.xfb
pgp2PSlizuCgD.pgp
Description: Digitale PGP-Signatur
