'Re: [oss-security] request CVE for weborf'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] request CVE for weborf
From:       Josh Bressers <bressers () redhat ! com>
Date:       2011-01-31 21:17:52
Message-ID: 2075640592.225906.1296508672982.JavaMail.root () zmail01 ! collab ! prod ! int ! phx2 ! redhat ! com
[Download RAW message or body]

Please use CVE-2011-0529.

Thanks.

-- 
    JB

----- Original Message -----
> Greetings,
> 
> i am requesting a CVE for weborf
> http://galileo.dmi.unict.it/wiki/weborf/
> 
> weborf 0.12.5 fixes a DoS occurring with malformed fields in HTTP
> request.
> 
> Diff from previous version 0.12.4:
> 
> $ diff 0.12.4/utils.c 0.12.5/utils.c
> 270a271,272
> >     val += param_len + 2; //Moves the begin of the string to exclude
> >     the
> name of the field
> >
> 276d277
> < val += param_len + 2; //Moves the begin of the string to exclude the
> name of the field
> 
> Regards
> --
> Salvo Tomaselli
[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic