oss-sec mailing list archives

CVE request: stunnel 4.4x heap overflow flaw

From: Vincent Danen <vdanen () redhat com>
Date: Fri, 19 Aug 2011 11:08:35 -0600

As noted in the stunnel changelog, 4.42 corrects a heap overflow flaw
that could lead to a DoS or remote execution of arbitrary code.

References:

http://stunnel.org/?page=sdf_ChangeLog
https://bugzilla.redhat.com/show_bug.cgi?id=732068

Could a CVE be assigned for this?

Thanks.

--

Vincent Danen / Red Hat Security Response Team

Current thread:

CVE request: stunnel 4.4x heap overflow flaw Vincent Danen (Aug 19)
- Re: CVE request: stunnel 4.4x heap overflow flaw Josh Bressers (Aug 19)