Home page logo
/

oss-sec logo oss-sec mailing list archives

Re: Re: CVE Request: glibc getaddrinfo() stack overflow
From: Raphael Geissert <geissert () debian org>
Date: Tue, 17 Sep 2013 10:30:38 +0200

On 17 September 2013 04:27, Kurt Seifried <kseifried () redhat com> wrote:
I prefer things to be explicit rather than assumed =).
Please use CVE-2013-4357  for this issue.

What exactly is that id meant to cover? do you have commit references
for the issue (singular)?
(also note that glibc#12671 is from 2011)

Or is the whole bunch of patches from extend_alloca supposed to be
CVE-noisy^Wworthy?

Cheers,
-- 
Raphael Geissert - Debian Developer
www.debian.org - get.debian.net


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]