Date: Tue, 19 Sep 2017 20:45:39 -0400 From: Luciano Bello <luciano@...ian.org> To: hosein.askari@....com Cc: team@...urity.debian.org, oss-security@...ts.openwall.com Subject: Re: [CVE-2017-14266] tcprewrite Heap-Based Buffer Overflow On 09/19/2017 07:40 AM, hosein.askari@....com wrote: > First of all, I realy appreciate for sending me an email about the mentioned vulnerability. I have examined the vulnerability > again on Ubuntu 16.04 due to your sent email. I have not tried this vulnerability on the distributions that you mentioned. > The screenshot which illustrates different steps (POC) is sent via this email for your kind considerations and uploaded on this link: > https://www.photobox.co.uk/my/photo/full?photo_id=9959498468 The link is 404ing. I might be creating the pcap wrongly. Can you make a input pcap available? thanks! /luciano
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ