Re: [bug-inetutils] syslogd vulnerable to CVE-2014-3634?

bug-inetutils

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [bug-inetutils] syslogd vulnerable to CVE-2014-3634?

From:	Mats Erik Andersson
Subject:	Re: [bug-inetutils] syslogd vulnerable to CVE-2014-3634?
Date:	Wed, 8 Oct 2014 09:41:05 +0200
User-agent:	Mutt/1.5.18 (2008-05-17)

fredag den  3 oktober 2014 klockan 19:51 skrev Guillem Jover detta:
> Hi!
> 
> I just stumbled over this on <http://seclists.org/oss-sec/2014/q4/79>,
> and from a cursory glance it appears as if inetutils' syslogd is also
> vulnerable? There's a patch there that seems would apply w/o much
> effort.

I have begun an analysis, in fact I intended to perform a review
already earlier since there seemed to be another obscurity related
to facility decoding.

Regards,
  Mats E A

[Prev in Thread]

Current Thread

[Next in Thread]

[bug-inetutils] syslogd vulnerable to CVE-2014-3634?, Guillem Jover, 2014/10/03
- Re: [bug-inetutils] syslogd vulnerable to CVE-2014-3634?, Mats Erik Andersson <=
  - Re: [bug-inetutils] syslogd vulnerable to CVE-2014-3634?, Mats Erik Andersson, 2014/10/17

Prev by Date: [bug-inetutils] syslogd vulnerable to CVE-2014-3634?
Next by Date: Re: [bug-inetutils] syslogd vulnerable to CVE-2014-3634?
Previous by thread: [bug-inetutils] syslogd vulnerable to CVE-2014-3634?
Next by thread: Re: [bug-inetutils] syslogd vulnerable to CVE-2014-3634?
Index(es):
- Date
- Thread