This is the mail archive of the gcc@gcc.gnu.org mailing list for the GCC project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: US-CERT Vulnerability Note VU#162289

From: Florian Weimer <fw at deneb dot enyo dot de>
To: Brad Roberts <braddr at puremagic dot com>
Cc: Mark Mitchell <mark at codesourcery dot com>, Chad Dougherty <crd at cert dot org>, Joe Buck <Joe dot Buck at synopsys dot COM>, "Robert C. Seacord" <rcs at cert dot org>, gcc at gcc dot gnu dot org, CERT Coordination Center <cert at cert dot org>
Date: Thu, 24 Apr 2008 11:26:09 +0200
Subject: Re: US-CERT Vulnerability Note VU#162289
References: <47FE14E6.4040406@cert.org> <4AD810FE2AA08D4D93851356BEE59A7AD8DEE2@mucse301.eu.infineon.com> <47FFA363.4060309@cert.org> <m3d4owjmix.fsf@google.com> <47FFB53E.2090703@cert.org> <20080412021433.GC10192@synopsys.com> <480E371E.20307@cert.org> <480E3E29.503@codesourcery.com> <Pine.LNX.4.64.0804221430220.4104@bellevue.puremagic.com>

* Brad Roberts:

> Additionally, the linked to notes for GCC are reflective of the original 
> innaccuracies: 
>
> http://www.kb.cert.org/vuls/id/CRDY-7DWKWM
>
> Vendor Statement
> No statement is currently available from the vendor regarding this 
> vulnerability.

Chad, it would be helpful if you could tell the GCC folks what steps
they need to take to publish their view under "Vendor Statement"
(presumably in a link to the GCC web site).

Note to the GCC folks: I've had trouble to get vendor statements
identified as such on the CERT web site before, so if there are some
difficulties, you shouldn't attribute this to the current controversy.

References:
- Re: US-CERT Vulnerability Note VU#162289
  - From: Robert C. Seacord
- RE: US-CERT Vulnerability Note VU#162289
  - From: Gerald.Williams
- Re: US-CERT Vulnerability Note VU#162289
  - From: Robert C. Seacord
- Re: US-CERT Vulnerability Note VU#162289
  - From: Ian Lance Taylor
- Re: US-CERT Vulnerability Note VU#162289
  - From: Robert C. Seacord
- Re: US-CERT Vulnerability Note VU#162289
  - From: Joe Buck
- Re: US-CERT Vulnerability Note VU#162289
  - From: Chad Dougherty
- Re: US-CERT Vulnerability Note VU#162289
  - From: Mark Mitchell
- Re: US-CERT Vulnerability Note VU#162289
  - From: Brad Roberts

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]