IRC correctness checks

Mark Doliner mark at
Wed Jan 15 11:03:12 EST 2014

On Tue, Jan 14, 2014 at 6:57 PM, Ethan Blanton <elb at> wrote:
> I'm writing this email because neither Daniel nor I feels we have the
> cycles to spend on this at this point.  I'm hoping someone else here
> does.  I don't know if this can be worked in before 2.10.8 or not; if
> it can, it needs a CVE.
> Tomasz, I'm sure your official security time is burned up at this
> point, but is there any chance you might be able to look at this?
> Anyone else?

I'd like to fix this in 2.10.8. I requested a CVE identifier for it. I
can take a stab at it if no one beats me to it (I might work on the
other 3 bugs before this one).

More information about the security mailing list