Home page logo
/

oss-sec logo oss-sec mailing list archives

Re: CVE request: stunnel 4.4x heap overflow flaw
From: Josh Bressers <bressers () redhat com>
Date: Fri, 19 Aug 2011 15:58:53 -0400 (EDT)

Please use CVE-2011-2940.

Thanks.

-- 
    JB


----- Original Message -----
As noted in the stunnel changelog, 4.42 corrects a heap overflow flaw
that could lead to a DoS or remote execution of arbitrary code.

References:

http://stunnel.org/?page=sdf_ChangeLog
https://bugzilla.redhat.com/show_bug.cgi?id=732068

Could a CVE be assigned for this?

Thanks.

--
Vincent Danen / Red Hat Security Response Team


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]