[Secure-testing-team] Bug#798466: ruby-devise-two-factor: TOTP Replay Attack (no CVE yet)

Moritz Muehlenhoff jmm at inutil.org
Wed Sep 9 17:10:29 UTC 2015

Previous message: [Secure-testing-team] Promocion EXPOFERIA 2015
Next message: [Secure-testing-team] Bug#798467: icedtea-web: CVE-2015-5234 CVE-2015-5235
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Package: ruby-devise-two-factor
Severity: grave
Tags: security
Justification: user security hole

Hi,
please see http://www.openwall.com/lists/oss-security/2015/09/06/2
for details.

Cheers,
        Moritz

Previous message: [Secure-testing-team] Promocion EXPOFERIA 2015
Next message: [Secure-testing-team] Bug#798467: icedtea-web: CVE-2015-5234 CVE-2015-5235
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Secure-testing-team mailing list