[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: Re: [oss-security] CVE request -- Linux kernel irda driver buffer
From: Miklos Vajna <vmiklos () frugalware ! org>
Date: 2009-01-27 8:41:47
Message-ID: 20090127084147.GS21473 () genesis ! frugalware ! org
[Download RAW message or body]
On Tue, Jan 27, 2009 at 07:46:27AM +0000, Mark J Cox <mjc@redhat.com> wrote:
> This doesn't seem to have any security implications; it's a single null
> byte overflow that happens all the time (not under control of an
> attacker), and from looking at the function that null byte isn't going to
> overwrite anything that would lead to a security consequence.
>
> So it looks to me like a bug, no CVE.
Hrm, OK.
Thanks for the correction.
[Attachment #3 (application/pgp-signature)]
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic