Hi
On Mon, 2018-01-15 at 21:24 +0100, Salvatore Bonaccorso wrote:
> Just for reference, we track some "details" in the security-tracker
> entry for CVE-2017-9274. SUSE did not only fix the
> obs-service-source_validate part,
We don't ship obs-service-source_validate (it's separate upstream
packa
Hey,
Just for reference, we track some "details" in the security-tracker
entry for CVE-2017-9274. SUSE did not only fix the
obs-service-source_validate part, but in osc added a validation (in
version 0.162.0) when using OBS 2.9 which is via commit:
https://github.com/openSUSE/osc/commit/f0325eb0
Package: osc
Severity: grave
Tags: security
Please see https://bugzilla.novell.com/show_bug.cgi?id=938556
Cheers,
Moritz
3 matches
Mail list logo
