Full Disclosure mailing list archives
Re: djbdns misformats some long response packets; patch and example attack
From: Jeremy Brown <0xjbrown41 () gmail com>
Date: Thu, 5 Mar 2009 11:20:42 -0500
With all due respect, this isn't the first security hole found in Mr. Bernstein's software, but seemingly the first he will actually acknowledge. Well done, Matthew Dempsky. On Thu, Mar 5, 2009 at 1:05 AM, Matthew Dempsky <matthew () dempsky org> wrote:
As a final update to this thread: Dan Bernstein acknowledged this bug as a security hole in djbdns and recommends that users install my patch. A copy of his post is available at http://marc.info/?l=djbdns&m=123613000920446&w=2.
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Re: djbdns misformats some long response packets; patch and example attack Jeremy Brown (Mar 05)