Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 277878 - dev-lang/mono XML signature HMAC truncation authentication bypass (CVE-2009-0217)
Summary: dev-lang/mono XML signature HMAC truncation authentication bypass (CVE-2009-0...
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: High minor (vote)
Assignee: Gentoo Security
URL:
Whiteboard: B3 [glsa]
Keywords:
Depends on: CVE-2009-0217 284306
Blocks:
  Show dependency tree
 
Reported: 2009-07-15 00:57 UTC by Robert Buchholz (RETIRED)
Modified: 2012-06-21 20:53 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Comment 1 Peter Alfredsen (RETIRED) gentoo-dev 2009-10-15 15:21:36 UTC
All arches stable in bug 284306. security@, this is yours now.
Comment 2 Stefan Behte (RETIRED) gentoo-dev Security 2009-10-15 16:50:27 UTC
Ready to vote, I vote YES.
Comment 3 Tobias Heinlein (RETIRED) gentoo-dev 2010-08-14 14:22:41 UTC
YES too, request filed.
Comment 4 GLSAMaker/CVETool Bot gentoo-dev 2012-06-21 20:53:28 UTC
This issue was resolved and addressed in
 GLSA 201206-13 at http://security.gentoo.org/glsa/glsa-201206-13.xml
by GLSA coordinator Tobias Heinlein (keytoaster).