[bug-inetutils] syslogd vulnerable to CVE-2014-3634?

bug-inetutils

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug-inetutils] syslogd vulnerable to CVE-2014-3634?

From:	Guillem Jover
Subject:	[bug-inetutils] syslogd vulnerable to CVE-2014-3634?
Date:	Fri, 3 Oct 2014 19:51:28 +0200
User-agent:	Mutt/1.5.23 (2014-03-12)

Hi!

I just stumbled over this on <http://seclists.org/oss-sec/2014/q4/79>,
and from a cursory glance it appears as if inetutils' syslogd is also
vulnerable? There's a patch there that seems would apply w/o much
effort.

I think this would be a good excuse to do a release, with a nice timing
now that Debian is close to its freeze in almost a month.

Thanks,
Guillem

[Prev in Thread]

Current Thread

[Next in Thread]

[bug-inetutils] syslogd vulnerable to CVE-2014-3634?, Guillem Jover <=
- Re: [bug-inetutils] syslogd vulnerable to CVE-2014-3634?, Mats Erik Andersson, 2014/10/08
  - Re: [bug-inetutils] syslogd vulnerable to CVE-2014-3634?, Mats Erik Andersson, 2014/10/17

Next by Date: Re: [bug-inetutils] syslogd vulnerable to CVE-2014-3634?
Next by thread: Re: [bug-inetutils] syslogd vulnerable to CVE-2014-3634?
Index(es):
- Date
- Thread