Universität Hamburg

Universität Hamburg – der Forschung, der Lehre, der Bildung

Faculty
of Mathematics, Informatics
and Natural Sciences

Security

Please do not report security vulnerabilities through public web forms.

Instead, please report (suspected) security vulnerabilities to dl.min@uni-hamburg.de.

If possible, encrypt your message with S/MIME or PGP.

You should receive a response from us within 48 hours. If the issue is confirmed, we will release a patch as soon as possible depending on complexity but historically within a few days.

Please include the requested information listed below (as much as you can provide) to help us better understand the nature and scope of the possible issue:

  • Type of issue (e.g. buffer overflow, SQL injection, cross-site scripting, etc.)
  • Full paths of source file(s) related to the manifestation of the issue
  • The location of the affected source code (tag/branch/commit or direct URL)
  • Any special configuration required to reproduce the issue
  • Step-by-step instructions to reproduce the issue
  • Proof-of-concept or exploit code (if possible)
  • Impact of the issue, including how an attacker might exploit the issue

This information will help us triage your report more quickly.

PGP

Key-ID: 440606ED7099DDFC
Fingerprint: 239E ABBF 98C7 5A5A 483B D323 4406 06ED 7099 DDFC

-----BEGIN PGP PUBLIC KEY BLOCK-----

mQENBGU6JvQBCADAmMnaBEF4iJSbnsnToBVVj/fJgJiUxN1MgxO3oqqg3TluFGOK
fgNIbW8RF0NQUgRXVjD1LQKq5zcTP94093nwS3j8vwtADkzitlP2+i6fK/t9D2kO
1px8bhYZZFQiI4ffNFt7IRyb3pewMdx51bGLWbFFvaydCtXRpTjd9lr6HquTIOVP
aXPOzo+kNoWNUGuDKoFcY9nfZnCWyrWD9CXoFanAT7737bi+22SoaP2iRsp4jBgd
WXAgAn/XwJN4QGkpM+11JSmvTNyW1AbTxjuFubgYyXaSto097cMfkRNHRannBs8O
QEn1pA/KiIDyLxirciqHVzmdKc1qVfcyS7tzABEBAAG0OERpZ2l0YWxpc2llcnVu
ZyBpbiBkZXIgTGVocmUgTUlOIDxkbC5taW5AdW5pLWhhbWJ1cmcuZGU+iQFXBBMB
CABBFiEEI56rv5jHWlpIO9MjRAYG7XCZ3fwFAmU6JvQCGwMFCQMB/awFCwkIBwIC
IgIGFQoJCAsCBBYCAwECHgcCF4AACgkQRAYG7XCZ3fxhTQf/Te9W3sm1MYy+zlNH
2KhiU9RxOgxWvDiGihKJlqwQbQsky4aDCWNBWrnhdYwQCaKq5xKdKuUBakdR4rDG
16zyeMDXQFw3Rf2H04408gefVwe2ULB6WjlyjI4o5XRBW1m/PVzlV3eZUXVLdZi5
pTm33r/cnmReqjAZGZCXW0EYbShf1AFjbiuZaUZksvAr4TbHgRdxQqrcfZhpkruX
x/7wMGLiOiHcVfzmQyyl09bjS7KmVqXOO0Y69lQ7kckYbb9Dc4EWK463EDORrYrS
/qZZufp+sBDZHemXtlDIpX9toEn6V6TWxtQga9+f/9zyVohH2LmcURVaqN+RxjkP
GZwYUbkBDQRlOib0AQgAqa7JtfBhjzcaY7kGeISRVqjzyAHAlhQWeRHH++NOyuMY
FHmEEONPGsWozOSP90LYbfiaTLOoANkNm/8eb7KeEI7/gW70Xh2HG6fn81QN9tcm
JFDkhuyBYa/6mUo7VbKWwTBj8XMGDiXGCh/W8ancVDNEVN1qRdkeNxqvGlyoDJ8G
MrXEwfN/7UbXCUHyxcFE/c9vfs0wiy9IDCZcW0rf7SZz/V4cMKRF7vMoj2IVnXen
XPV9qk78oCRard1R48+r8qwqPQd90+HdAVliWANDBsA7oWiDetsinZbsXFjHu9rO
alKyzA9RrubyqxIom0B1D969Z6JOb8l0HlOUxi2RrwARAQABiQE8BBgBCAAmFiEE
I56rv5jHWlpIO9MjRAYG7XCZ3fwFAmU6JvQCGwwFCQMB/awACgkQRAYG7XCZ3fxL
ewf/bz/J9N6L/zByPlhCnnAlZnAsPCC0y1BLeEfB8cNfWRE33AoXzu8JJyUBOD8l
62oB3VtrNigQOAVnZkKTmSOEs25oXLUk19B3jgQSBs+DFTLCRAGrMvw8gPMFt1IW
UQ1hb8Zt7BpCZOzj/WSimueq70uMjw9q5MpST2fyNsCFAixToQCCik9iRGKEmAmb
XZUMuaiHEc9+I3U0qFf45LhsvH7QlNBrObyI6V6gAnnGicDBqc8U+VnncoKpHb8v
szkhlalMfq1zgSgFw9YlU7J9eLBJxLmhFG81JHZ4aVz1DU2FnReqZbsJjBVXWrqJ
qN+AIHkNAlA5pBI0VdrgPf7dSw==
=HGjX
-----END PGP PUBLIC KEY BLOCK-----

S/MIME

SHA1 fingerprint: 80:B9:DE:40:74:BD:72:42:A7:85:97:62:C5:0F:64:6B:F0:99:78:B3

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----