[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: [oss-security] qpidd SSL connection DoS (CVE-2010-3083)
From: Vincent Danen <vdanen () redhat ! com>
Date: 2010-10-08 1:51:33
Message-ID: 20101008015133.GK1955 () redhat ! com
[Download RAW message or body]
Just a heads up for anyone that ships qpid. About a year and a half
ago a blocking condition was found with SSL connections to qpidd, but I
don't think upstream really thought about the security implications.
It was fixed upstream in July 2009.
The details are in our bug:
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-3083
--
Vincent Danen / Red Hat Security Response Team
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic