Date: Sun, 29 Mar 2015 14:20:44 +0200 From: Sébastien Delafond <sdelafond@...il.com> To: oss-security@...ts.openwall.com Cc: cve-assign@...re.org Subject: CVE request: 2 issues in inspircd Hi, the Debian Security Team is requesting 2 CVEs for inspircd. * the fix that was included in Debian for CVE-2012-1836 is incomplete, and does not solve the original remote code execution problem. See: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=780880#5 * a DoS can be triggered by invalid DNS packets. See: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=780880#5 https://github.com/inspircd/inspircd/commit/58c893e834ff20495d007709220881a3ff13f423 Cheers, --Seb
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ