All of lore.kernel.org
 help / color / mirror / Atom feed
* [Secunia Research] policycoreutils Vulnerability - Request for Details
       [not found] <7803DB77C012DF4F825DB4445A696E5721643060@SCHEXMB1.acresso.com>
@ 2016-09-23 12:33 ` Secunia Research
  2016-09-23 13:32   ` Paul Moore
  0 siblings, 1 reply; 2+ messages in thread
From: Secunia Research @ 2016-09-23 12:33 UTC (permalink / raw)
  To: selinux; +Cc: vuln

Hello,

We are currently processing a vulnerability report published by a third-party [1] for policycoreutils and are currently evaluating
it to publish a Secunia Advisory for this. Please see the original report for details.

We would appreciate to receive your comments on this issue to properly evaluate the report.

* Can you confirm the vulnerability?
* Which products and versions are affected by the vulnerability?
* When do you expect to release fixed versions?
* Are there any mitigating factors or recommended workarounds?

Reference:
[1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=838599

Many thanks and best regards,
Laurent Delosieres 
Security Specialist 

Secunia Research at Flexera Software

Rued Langgaardsvej 8
2300 Copenhagen S
Denmark
Phone +45 7020 5144
Fax +45 7020 5145

http://www.flexerasoftware.com

^ permalink raw reply	[flat|nested] 2+ messages in thread
* Re: [Secunia Research] policycoreutils Vulnerability - Request for Details
  2016-09-23 12:33 ` [Secunia Research] policycoreutils Vulnerability - Request for Details Secunia Research
@ 2016-09-23 13:32   ` Paul Moore
  0 siblings, 0 replies; 2+ messages in thread
From: Paul Moore @ 2016-09-23 13:32 UTC (permalink / raw)
  To: Secunia Research; +Cc: selinux

On Fri, Sep 23, 2016 at 8:33 AM, Secunia Research <vuln@secunia.com> wrote:
> Hello,
>
> We are currently processing a vulnerability report published by a third-party [1] for policycoreutils and are currently evaluating
> it to publish a Secunia Advisory for this. Please see the original report for details.
>
> We would appreciate to receive your comments on this issue to properly evaluate the report.
>
> * Can you confirm the vulnerability?
> * Which products and versions are affected by the vulnerability?
> * When do you expect to release fixed versions?
> * Are there any mitigating factors or recommended workarounds?
>
> Reference:
> [1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=838599

This mailing list is focused on the upstream development of SELinux
and generally does not focus on distribution specific issues.  I would
suggest contacting the individual Linux vendors to obtain official
responses specific to their products.

-- 
paul moore
www.paul-moore.com

^ permalink raw reply	[flat|nested] 2+ messages in thread
end of thread, other threads:[~2016-09-23 13:32 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
     [not found] <7803DB77C012DF4F825DB4445A696E5721643060@SCHEXMB1.acresso.com>
2016-09-23 12:33 ` [Secunia Research] policycoreutils Vulnerability - Request for Details Secunia Research
2016-09-23 13:32   ` Paul Moore

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.