-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512
I contacted an upstream project last night regarding two CVEs that date back to 2009. There is limited information regarding the vulnerabilities on the web so I wasn't sure in what version the CVEs were fixed. Turns out upstream had never been notified. An hour's worth of work later and he's fixed the two vulnerabilities.
- -- Eric
- -------------------------------------------------- Eric "Sparks" Christensen Fedora Project
sparks@fedoraproject.org - sparks@redhat.com 097C 82C3 52DF C64A 50C2 E3A3 8076 ABDE 024B B3D1 - --------------------------------------------------
security-team@lists.fedoraproject.org