oss-sec mailing list archives
Re: CVE request for neon
From: "Steven M. Christey" <coley () linus mitre org>
Date: Wed, 20 Aug 2008 12:06:35 -0400 (EDT)
On Fri, 15 Aug 2008, Joe Orton wrote:
A NULL pointer deference in the Digest authentication support in neon versions 0.28.0 through 0.28.2 inclusive allows a malicious server to crash a client application, resulting in possible denial of service. Reference: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=476571
Use CVE-2008-3746, to be filled in later. - Steve
Current thread:
- CVE request for neon Joe Orton (Aug 15)
- Re: CVE request for neon Steven M. Christey (Aug 20)
- Re: CVE request for neon Joe Orton (Aug 20)
- Re: CVE request for neon Steven M. Christey (Aug 20)