Hello oss-security,
Thursday, October 3, 2024 at 2:58 PM -04:00 from pe...@7bits.nl <pe...@7bits.nl>: >Hello, > >On Thu, Oct 3, 2024, at 19:54, Larry Cashdollar wrote: >> I've requested a CVE ID to be able to discern between the RCE and the DoS >> vulnerability. > >I reported this as >https://github.com/OpenPrinting/cups-filters/security/advisories/GHSA-rq86-c7g6-r2h8 > last week, and in the edits at the top (by upstream, above the Summary >heading) it looks like they did not want (or did not consider) to request a >separate CVE for this. Please do coordinate with them if you decide to go >ahead with this request. > >(I did notice, and can see value in, Will Dormann's suggestion in the other >thread that it might make sense to have more fine-grained CVEs for this >collection of problems.) > >-- > Peter van Dijk > pe...@7bits.nl This vulnerability has been assigned CVE-2024-47850. Thanks, Larry C$
