Date: Tue, 10 Jun 2008 20:37:57 -0400 (EDT) From: "Steven M. Christey" <coley@...us.mitre.org> To: oss-security@...ts.openwall.com Subject: Re: exploitability of off-by-one in motion webserver On Tue, 10 Jun 2008, Nico Golde wrote: > Hi, > in http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=484572 I > reported an off-by-one programming error in motion: > > 1950 static int read_client(int client_socket, void *userdata, char *auth) Use CVE-2008-2654 - Steve
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.