Full Disclosure mailing list archives

Re: [ GLSA 200611-08 ] RPM: Buffer overflow

From: Matthew Flaschen <matthew.flaschen () gatech edu>
Date: Mon, 13 Nov 2006 21:26:07 -0500

Aren't RPMs meant to contain arbitrary code?

Matthew Flaschen

Raphael Marichez wrote:
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -


Synopsis
========

RPM is vulnerable to a buffer overflow and possibly the execution of
arbitrary code when opening specially crafted packages.

Attachment: signature.asc
Description: OpenPGP digital signature

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

[ GLSA 200611-08 ] RPM: Buffer overflow Raphael Marichez (Nov 13)
- Re: [ GLSA 200611-08 ] RPM: Buffer overflow Matthew Flaschen (Nov 13)