Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <139810815.1926293.1312919420488.JavaMail.root@zmail01.collab.prod.int.phx2.redhat.com>
Date: Tue, 9 Aug 2011 15:50:20 -0400 (EDT)
From: Josh Bressers <bressers@...hat.com>
To: oss-security@...ts.openwall.com
Cc: coley <coley@...re.org>
Subject: Re: CVE request: heap overflow in tcptrack < 1.4.2



----- Original Message -----
> A heap overflow in the parsing of tcptrack's command line was found.
> The details are pretty sparse, but here are some references:
> 
> http://www.rhythm.cx/~steve/devel/tcptrack/#news
> https://bugs.gentoo.org/show_bug.cgi?id=377917
> https://bugzilla.redhat.com/show_bug.cgi?id=729096
> 

Please use CVE-2011-2903.

Thanks.

-- 
    JB

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.