* [Secunia Research] policycoreutils Vulnerability - Request for Details
[not found] <7803DB77C012DF4F825DB4445A696E5721643060@SCHEXMB1.acresso.com>
@ 2016-09-23 12:33 ` Secunia Research
2016-09-23 13:32 ` Paul Moore
0 siblings, 1 reply; 2+ messages in thread
From: Secunia Research @ 2016-09-23 12:33 UTC (permalink / raw)
To: selinux; +Cc: vuln
Hello,
We are currently processing a vulnerability report published by a third-party [1] for policycoreutils and are currently evaluating
it to publish a Secunia Advisory for this. Please see the original report for details.
We would appreciate to receive your comments on this issue to properly evaluate the report.
* Can you confirm the vulnerability?
* Which products and versions are affected by the vulnerability?
* When do you expect to release fixed versions?
* Are there any mitigating factors or recommended workarounds?
Reference:
[1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=838599
Many thanks and best regards,
Laurent Delosieres
Security Specialist
Secunia Research at Flexera Software
Rued Langgaardsvej 8
2300 Copenhagen S
Denmark
Phone +45 7020 5144
Fax +45 7020 5145
http://www.flexerasoftware.com
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: [Secunia Research] policycoreutils Vulnerability - Request for Details
2016-09-23 12:33 ` [Secunia Research] policycoreutils Vulnerability - Request for Details Secunia Research
@ 2016-09-23 13:32 ` Paul Moore
0 siblings, 0 replies; 2+ messages in thread
From: Paul Moore @ 2016-09-23 13:32 UTC (permalink / raw)
To: Secunia Research; +Cc: selinux
On Fri, Sep 23, 2016 at 8:33 AM, Secunia Research <vuln@secunia.com> wrote:
> Hello,
>
> We are currently processing a vulnerability report published by a third-party [1] for policycoreutils and are currently evaluating
> it to publish a Secunia Advisory for this. Please see the original report for details.
>
> We would appreciate to receive your comments on this issue to properly evaluate the report.
>
> * Can you confirm the vulnerability?
> * Which products and versions are affected by the vulnerability?
> * When do you expect to release fixed versions?
> * Are there any mitigating factors or recommended workarounds?
>
> Reference:
> [1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=838599
This mailing list is focused on the upstream development of SELinux
and generally does not focus on distribution specific issues. I would
suggest contacting the individual Linux vendors to obtain official
responses specific to their products.
--
paul moore
www.paul-moore.com
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2016-09-23 13:32 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
[not found] <7803DB77C012DF4F825DB4445A696E5721643060@SCHEXMB1.acresso.com>
2016-09-23 12:33 ` [Secunia Research] policycoreutils Vulnerability - Request for Details Secunia Research
2016-09-23 13:32 ` Paul Moore
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.