oss-sec mailing list archives
Re: CVE-2016-9963 Exim private information leak
From: Jeffrey Walton <noloader () gmail com>
Date: Thu, 22 Dec 2016 06:06:41 -0500
On Thu, Dec 22, 2016 at 5:40 AM, Heiko Schlittermann <hs () schlittermann de> wrote:
Kurt H Maier <khm () sciops net> (Do 22 Dez 2016 01:57:33 CET):On Thu, Dec 22, 2016 at 12:24:09AM +0100, Heiko Schlittermann wrote:In case the distros are ready already, we could release on 23rd, but I need feedbeck from the distros and ack from the other developers.Please pursue this possibility.Ok, I asked the distro@vs… list to get clearance. If the major distros supporting Exim give their ok, we're prepared to release sooner. Stay tuned.
Its probably worth mentioning the only people who are at a disadvantage now are the good guys and decision makers. The bad guys already knew about the problem, or the motivated ones found it after the partial disclosure. Jeff
Current thread:
- CVE Request - Exim 4.69-4.87 - disclosure of private information Heiko Schlittermann (Dec 15)
- Re: CVE Request - Exim 4.69-4.87 - disclosure of private information cve-assign (Dec 15)
- CVE-2016-9963 Exim private information leak Heiko Schlittermann (Dec 18)
- Re: CVE-2016-9963 Exim private information leak Heiko Schlittermann (Dec 20)
- Re: CVE-2016-9963 Exim private information leak Kurt H Maier (Dec 21)
- Re: CVE-2016-9963 Exim private information leak Heiko Schlittermann (Dec 21)
- Re: CVE-2016-9963 Exim private information leak Kurt H Maier (Dec 21)
- Re: CVE-2016-9963 Exim private information leak Heiko Schlittermann (Dec 22)
- Re: CVE-2016-9963 Exim private information leak Jeffrey Walton (Dec 22)
- Re: CVE-2016-9963 Exim private information leak Heiko Schlittermann (Dec 22)
- Re: CVE-2016-9963 Exim private information leak Jeffrey Walton (Dec 22)
- CVE-2016-9963 Exim private information leak Heiko Schlittermann (Dec 18)
- Re: CVE-2016-9963 Exim private information leak Heiko Schlittermann (Dec 22)
- Re: CVE-2016-9963 Exim private information leak Kurt Seifried (Dec 22)
- Re: CVE Request - Exim 4.69-4.87 - disclosure of private information cve-assign (Dec 15)
- Re: CVE-2016-9963 Exim private information leak Johannes Segitz (Dec 22)
- CVE-2016-9963 | Exim 4.87.1 released (Was: CVE Request - Exim 4.69-4.87) - disclosure of private information) Heiko Schlittermann (Dec 25)