[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <2075640592.225906.1296508672982.JavaMail.root@zmail01.collab.prod.int.phx2.redhat.com>
Date: Mon, 31 Jan 2011 16:17:52 -0500 (EST)
From: Josh Bressers <bressers@...hat.com>
To: oss-security@...ts.openwall.com
Cc: coley <coley@...re.org>
Subject: Re: request CVE for weborf
Please use CVE-2011-0529.
Thanks.
--
JB
----- Original Message -----
> Greetings,
>
> i am requesting a CVE for weborf
> http://galileo.dmi.unict.it/wiki/weborf/
>
> weborf 0.12.5 fixes a DoS occurring with malformed fields in HTTP
> request.
>
> Diff from previous version 0.12.4:
>
> $ diff 0.12.4/utils.c 0.12.5/utils.c
> 270a271,272
> > val += param_len + 2; //Moves the begin of the string to exclude
> > the
> name of the field
> >
> 276d277
> < val += param_len + 2; //Moves the begin of the string to exclude the
> name of the field
>
> Regards
> --
> Salvo Tomaselli
Powered by blists - more mailing lists
Please check out the
Open Source Software Security Wiki, which is counterpart to this
mailing list.
Confused about mailing lists and their use?
Read about mailing lists on Wikipedia
and check out these
guidelines on proper formatting of your messages.
