oss-sec mailing list archives
Re: CVE request: stunnel 4.4x heap overflow flaw
From: Josh Bressers <bressers () redhat com>
Date: Fri, 19 Aug 2011 15:58:53 -0400 (EDT)
Please use CVE-2011-2940. Thanks. -- JB ----- Original Message -----
As noted in the stunnel changelog, 4.42 corrects a heap overflow flaw that could lead to a DoS or remote execution of arbitrary code. References: http://stunnel.org/?page=sdf_ChangeLog https://bugzilla.redhat.com/show_bug.cgi?id=732068 Could a CVE be assigned for this? Thanks. -- Vincent Danen / Red Hat Security Response Team
Current thread:
- CVE request: stunnel 4.4x heap overflow flaw Vincent Danen (Aug 19)
- Re: CVE request: stunnel 4.4x heap overflow flaw Josh Bressers (Aug 19)