Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Thu, 20 Nov 2014 10:31:54 +1100
From: Murray McAllister <>
Subject: CVE request: icecast: possible leak of on-connect scripts

Good morning,

It was reported that Icecast could possibly leak the contents of 
on-connect scripts to clients, which may contain sensitive information. 
This issue has been fixed in the 2.4.1 release:

"Fix on-connect and on-disconnect script STDIN/STDOUT/STDERR corruption 
due to shared file descriptors."



Murray McAllister / Red Hat Product Security

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.