Comment 91 for bug 1409142
Revision history for this message
| Tristan Cacqueray (tristan-cacqueray) wrote Re: Websocket Hijacking Vulnerability in Nova VNC Server (CVE-2015-0259) | #91 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
bbfa235
(Get the code!)
Thanks for the feedback Paul!
Well if there is an easy way to deter dns rebinding in the same patch, that would be ideal. Though let's not block on that since this is already overdue.
@nova-coresec please review the last proposed patch, if it's approved, we could send the follow up next monday with a new disclosure date at next thursday...