Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Tue, 16 Oct 2012 15:49:15 +0200
From: Tomas Hoger <>
Subject: Re: libproxy PAC downloading buffer overflows

On Fri, 12 Oct 2012 10:43:06 +0200 Tomas Hoger wrote:

> libproxy 0.4.9 fixes a buffer overflow reported by Tomas Mraz:

Anyone updating 0.4.x version to fixed upstream version should consider
picking 0.4.10, which fixes an infinite loop in the PAC downloading
code (incorrectly fixed in 0.4.9, reportedly also breaking chunked
encoding downloads).

Tomas Hoger / Red Hat Security Response Team

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ