Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <CAA7hUgEK9nkbHbeWD9QEGp+kB3uANojwvnSv=WN=FaUZo36mbA@mail.gmail.com>
Date: Wed, 14 Aug 2013 17:30:44 +0200
From: Raphael Geissert <geissert@...ian.org>
To: oss-security@...ts.openwall.com
Cc: Timo Sirainen <tss@....fi>
Subject: Possible CVE request: dovecot crash when disconnecting during pop3 LIST

Hi,

Dovecot's 2.2.5 release notes mention a fix for a client-triggered
assert when disconnecting during a pop3 LIST[1]. Without more details,
I can't tell if a CVE id should be assigned. Timo, could you please
shed some more light, or provide a pointer to more details?

Thanks in advance.

[1]http://www.dovecot.org/list/dovecot-news/2013-August/000261.html

Regards,
-- 
Raphael Geissert - Debian Developer
www.debian.org - get.debian.net

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.