[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FD] ConnMan #ConnManDo Vulnerability

To: <fulldisclosure@xxxxxxxxxxxx>
Subject: [FD] ConnMan #ConnManDo Vulnerability
From: "Daisuke Noguchi[NRI$B%;(B$B%-%e%"!!Ln8}(B]" <noguchi@xxxxxxxxxxxxxxxx>
Date: Tue, 29 Aug 2017 20:36:37 +0900

Hi list,

We have published the web page which describes about detail of 
CVE-2017-12865,ConnMan vulnerability.
http://connmando.nri-secure.co.jp/index.html

This patch has been merged to master branch of debian and yocto Linux 
distribution.
And now we are trying to communicate with other Linux distribution security 
teams.
- [debian][DSA 3956-1] connman security update
  https://www.debian.org/security/2017/dsa-3956
- [yocto]connman: Fix for CVE-2017-12865
  
http://git.yoctoproject.org/cgit/cgit.cgi/poky/commit/?id=9086b525dd00f482ea68a384540cd30778413c9e

If it would be worth applying patch, could you please deal with it.


----------------------------------------------------------------
$B$3$N%a!<%k$O!"K\Mh$N08@h$NJ}$N$_$K8BDj$5$l$?5!L)>pJs$,4^$^$l$F$$(B
$B$k>l9g$,$4$6$$$^$9!#$*?4$"$?$j$N$J$$>l9g$O!"Aw?.e$2$^$9!#(B

PLEASE READ :This e-mail is confidential and intended for the
named recipient only. If you are not an intended recipient,
please notify the sender and delete this e-mail.
----------------------------------------------------------------

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Prev by Date: [FD] CVE-2017-13671 - MISP Stored XSS
Previous by thread: [FD] CVE-2017-13671 - MISP Stored XSS
Index(es):
- Date
- Thread