IQIcBAEBAgAGBQJR3bvFAAoJEBYNRVNeJnmT1ksQAL/C09I0kmpMEB9J8kSF19x+ Kurt Seifried Red Hat Security Response Team (SRT) > live on OSVDB, which may help on CVE assignments:ĬVE-2013-2257 Cryptocat Group Chat ECC Private Key Generation BruteĬVE-2013-2258 Cryptocat Crafted Nickname User Impersonation SpoofingĬVE-2013-2259 Cryptocat on Firefox Conversation Overview NicknameĬVE-2013-2260 Cryptocat Cryptocat.random() Function Array Key EntropyĬVE-2013-2261 Cryptocat for Chrome manifest.json img/keygen.gifĬVE-2013-2262 Cryptocat strophe.js XMPP Request ID Prediction OTR ChatĬVE-2013-4100 Cryptocat Crafted Username Chat Remote DoSĬVE-2013-4101 Cryptocat Link Markup Decorator addLinks() Function HTMLĬVE-2013-4102 Cryptocat strophe.js Math.random() Function RandomĬVE-2013-4103 Cryptocat Crafted Data URI Remote Script InjectionĬVE-2013-4104 Cryptocat OTR Socialist Millionnaire Protocol KeyĬVE-2013-4105 Cryptocat Multiparty Encryption Scheme AES-CTR NonceĬVE-2013-4106 Cryptocat Conversation Overview Nickname XSSĬVE-2013-4107 Cryptocat cryptocat.js handlePresence() FunctionĬVE-2013-4108 Cryptocat Multiple Unspecified Minor IssuesĬVE-2013-4109 Cryptocat Message Handling Unspecified XSSĬVE-2013-4110 Cryptocat Unspecified Chat Participant User List Disclosure > from 2012 and broke out all the issues as I saw them. > I went through the CryptoCat changelog, as well as the audit report Subject: Re: Re: Re: Re: cryptocat/decryptocat - needs a cve? Follow on Twitter for new release announcements and other news [
0 Comments
Leave a Reply. |