On Fri, 24 Apr 2020 14:21:18 +0200 Matthias Gerstner said:
> Hi,
>
> > > > > From my point of view at least items a), b) and d) deserve a CVE
> > > > > assignment due to the severity of the issues. Even if to my knowledge
> > > > > the code in question wasn't yet part of an official release yet
Hi,
> > > > From my point of view at least items a), b) and d) deserve a CVE
> > > > assignment due to the severity of the issues. Even if to my knowledge
> > > > the code in question wasn't yet part of an official release yet it might
> > > > help the community to identify risks in their systems.
For completeness of archives our tracker bug was
https://phab.enlightenment.org/T8669
On 4/23/20 12:24 AM, Carsten Haitzler (The Rasterman) wrote:
> On Wed, 22 Apr 2020 11:02:46 +0200 Matthias Gerstner said:
>
>
> fixed. :)
>
>> Hi,
>>
>> the SUSE security team has been asked [1] to review the
On Wed, 22 Apr 2020 10:58:33 -0400 Santiago Torres
said:
> On Wed, Apr 22, 2020 at 03:54:13PM +0100, Carsten Haitzler wrote:
> > On Wed, 22 Apr 2020 11:02:46 +0200 Matthias Gerstner
> > said:
> >
> >
> > fixed. :)
>
> Nice turnaround! :)
>
> > > # Security Vulnerability Process
> > >
> > >
On Wed, 22 Apr 2020 17:00:37 +0200 Stefan Schmidt
said:
> Hello.
>
> On 22.04.20 16:54, Carsten Haitzler (The Rasterman) wrote:
> > On Wed, 22 Apr 2020 11:02:46 +0200 Matthias Gerstner
> > said:
> >
> >
> > fixed. :)
>
> And obviously a big thanks to Matthias for taking the time to analyze
Hello.
On 22.04.20 16:54, Carsten Haitzler (The Rasterman) wrote:
On Wed, 22 Apr 2020 11:02:46 +0200 Matthias Gerstner said:
fixed. :)
And obviously a big thanks to Matthias for taking the time to analyze
and report the issues!
regards
Stefan Schmidt
Hi,
the SUSE security team has b
On Wed, Apr 22, 2020 at 03:54:13PM +0100, Carsten Haitzler wrote:
> On Wed, 22 Apr 2020 11:02:46 +0200 Matthias Gerstner said:
>
>
> fixed. :)
Nice turnaround! :)
> > # Security Vulnerability Process
> >
> > I'm posting these findings here publicly since the Enlightenment project
> > does not
On Wed, 22 Apr 2020 11:02:46 +0200 Matthias Gerstner said:
fixed. :)
> Hi,
>
> the SUSE security team has been asked [1] to review the new
> `enlightenment_system` setuid-root binary for inclusion into openSUSE
> Tumbleweed. Therefore I looked into the snapshot that our packager
> provided me
