Re: [Full-disclosure] Advisory: sudo 1.8 Format String Vulnerability

[nicolas vigier]

On Mon, 30 Jan 2012, Henri Salo wrote:

> On Mon, Jan 30, 2012 at 02:56:26PM +0100, joernchen of Phenoelit wrote:
> > Hi,
> > 
> > FYI, see attached.
> > 
> > cheers,
> > 
> > joernchen
> > -- 
> > joernchen ~ Phenoelit
> >  ~ C776 3F67 7B95 03BF 5344
> > http://www.phenoelit.de  ~ A46A 7199 8B7B 756A F5AC
> 
> This seems to be CVE-2012-0809 and reported to Gentoo as 
> https://bugs.gentoo.org/show_bug.cgi?id=401533

Fixed in Mageia 1 :
https://bugs.mageia.org/show_bug.cgi?id=4348

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] Working exploit for Debian generated SSH Keys

[nicolas vigier]

On Mon, 19 May 2008, Ronald van der Westen wrote:

> Why reinvent the wheel?

Why not ?

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/