Date: Mon, 18 May 2009 19:50:54 +0100 (BST) From: Mark J Cox <mjc@...hat.com> To: oss-security@...ts.openwall.com Subject: Re: Two OpenSSL DTLS remote DoS Stephen Henson pointed out that there is one other DTLS issue that probably has security consequences too, and that backporting DTLS issues is probably not the right thing to do given the amount of change happening in the DTLS code to fix protocol errors etc: CVE-2009-1379 DTLS fragment read after free DoS http://rt.openssl.org/Ticket/Display.html?id=1923&user=guest&pass=guest Mark
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.