'[oss-security] CVE-2008-2363: pan - heap overflow'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    [oss-security] CVE-2008-2363: pan - heap overflow
From:       Pavel Polischouk <pavel.polischouk () gmail ! com>
Date:       2008-05-29 14:17:10
Message-ID: 483EBAE6.9050106 () gmail ! com
[Download RAW message or body]

Hi,

I discovered a heap overflow in pan affecting the parsing of .nzb files. 
Details (including stack dumps and offending .nzb files) in RedHat 
Bugzilla entry:

https://bugzilla.redhat.com/show_bug.cgi?id=446902

Patch: https://bugzilla.redhat.com/attachment.cgi?id=306880

Links to this bug at other project/vendor sites:

GNOME bugzilla: http://bugzilla.gnome.org/show_bug.cgi?id=535413
Gentoo bugzilla: http://bugs.gentoo.org/show_bug.cgi?id=224051

Project developers have been notified. CVE issued by Red Hat Security 
Response Team.

Thanks,
Pavel
[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic