accel-ppp icon indicating copy to clipboard operation
accel-ppp copied to clipboard
verified publisher icon xebd

Vulnerability Disclosure

Open spaceraccoon opened this issue 4 years ago • 5 comments

Dear accel-ppp Development Team,

I have filed a vulnerability disclosure by email to [email protected]. Please let me know when it is patched and we can use this issue for tracking purposes.

Thanks!

spaceraccoon avatar Dec 27 '21 04:12 spaceraccoon

Hi @spaceraccoon, could you please send info to [email protected]?

DmitriyEshenko avatar Dec 28 '21 14:12 DmitriyEshenko

Hi @DmitriyEshenko , okay, I have sent it. Thanks!

spaceraccoon avatar Dec 28 '21 14:12 spaceraccoon

@spaceraccoon fix proposal is here https://github.com/accel-ppp/accel-ppp/pull/35

svlobanov avatar Dec 28 '21 18:12 svlobanov

Thanks @svlobanov , could you add one more credit:

Reported-by: Chloe Ong Reported-by: Eugene Lim [email protected] Reported-by: Kar Wei Loh

The patched code looks fine.

Thank you!

spaceraccoon avatar Dec 29 '21 00:12 spaceraccoon

Hi @DmitriyEshenko @svlobanov, we will be assigning CVEs on our end for this issue to save you time. Thanks!

whitesquirrell avatar Jan 24 '22 03:01 whitesquirrell