oss-sec mailing list archives
Re: Re: CVE Request: glibc getaddrinfo() stack overflow
From: Raphael Geissert <geissert () debian org>
Date: Tue, 17 Sep 2013 10:30:38 +0200
On 17 September 2013 04:27, Kurt Seifried <kseifried () redhat com> wrote:
I prefer things to be explicit rather than assumed =). Please use CVE-2013-4357 for this issue.
What exactly is that id meant to cover? do you have commit references for the issue (singular)? (also note that glibc#12671 is from 2011) Or is the whole bunch of patches from extend_alloca supposed to be CVE-noisy^Wworthy? Cheers, -- Raphael Geissert - Debian Developer www.debian.org - get.debian.net
Current thread:
- Re: CVE Request: glibc getaddrinfo() stack overflow Raphael Geissert (Jul 04)
- <Possible follow-ups>
- Re: CVE Request: glibc getaddrinfo() stack overflow Maksymilian (Jul 04)
- Re: Re: CVE Request: glibc getaddrinfo() stack overflow Florian Weimer (Aug 22)
- Re: Re: CVE Request: glibc getaddrinfo() stack overflow Florian Weimer (Sep 14)
- Re: Re: CVE Request: glibc getaddrinfo() stack overflow Kurt Seifried (Sep 16)
- Re: Re: CVE Request: glibc getaddrinfo() stack overflow Raphael Geissert (Sep 17)
- Re: Re: CVE Request: glibc getaddrinfo() stack overflow Florian Weimer (Aug 22)