Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Mon, 21 Jul 2014 11:19:21 -0700
From: Ritwik Ghoshal <ritwik.ghoshal@...cle.com>
To: oss-security@...ts.openwall.com
Subject: Re: Additional information on CVE-2014-2469?

Hi Moritz,

As far as we know CVE-2014-2469 affects lighttpd in Solaris only. I have
fixed the typo in our advisory. Thank you for pointing it out.


Thanks,
-Ritwik Ghoshal


> -------- Original Message --------
> Subject:     [oss-security] Additional information on CVE-2014-2469?
> Date:     Sun, 20 Jul 2014 11:10:59 +0200
> From:     Moritz Muehlenhoff <jmm@...ian.org>
> Reply-To:     oss-security@...ts.openwall.com
> To:     oss-security@...ts.openwall.com
>
>
>
> Is there anyone from Oracle on the list? Does anyone have further
> information on CVE-2014-2469?
> https://blogs.oracle.com/sunsecurity/entry/cve_2014_2469_denial_of
>
> I assume that's a typo in the advisory and was meant to say lighttpd
> instead of lighthttpd? If so, Is this Solaris/Oracle-specific?
>
> Cheers,
>         Moritz
>
>
>

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.