[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: Re: [oss-security] CVE Request -- ejabberd
From: Josh Bressers <bressers () redhat ! com>
Date: 2010-01-29 19:40:40
Message-ID: 1544302949.600851264794040102.JavaMail.root () zmail01 ! collab ! prod ! int ! phx2 ! redhat ! com
[Download RAW message or body]
----- "Jan Lieskovsky" <jlieskov@redhat.com> wrote:
> Hi Josh, Steve, vendors,
>
> a remotely exploitable DoS from XMPP client to ejabberd server
> via too many "client2server" messages (causing the message queue on
> the server to get overloaded, leading to server crash) has been
> found:
>
> https://support.process-one.net/browse/EJAB-1173
>
> Links to applied patches are in:
>
>
> https://support.process-one.net/browse/EJAB-1173;jsessionid=CC9A1D875A20197DD4571444DA8C1EFB?page=com.atlassian.jira.plugin.system.issuetabpanels%3Aall-tabpanel
>
Please use CVE-2010-0305
Thanks.
--
JB
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic