[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: Re: [oss-security] CVE request: heap-based buffer overflow in ldns
From: Josh Bressers <bressers () redhat ! com>
Date: 2011-09-30 14:36:04
Message-ID: 785033fe-2bbf-4880-b471-7dde04bc926a () zmail01 ! collab ! prod ! int ! phx2 ! redhat ! com
[Download RAW message or body]
Please use CVE-2011-3581 for this.
Thanks.
--
JB
----- Original Message -----
> Could a CVE be assigned to this flaw? A boundary error in
> ldns_rr_new_frm_str_internal() could lead to a heap-based buffer
> overfow
> when processing RR records.
>
> http://www.nlnetlabs.nl/bugs-script/show_bug.cgi?id=403
> https://secunia.com/advisories/46153/
> https://bugzilla.redhat.com/show_bug.cgi?id=741024
>
> Thanks.
>
> --
> Vincent Danen / Red Hat Security Response Team
>
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic