oss-sec mailing list archives
kgb-bot can be crashed by some network traffic
From: Kurt Seifried <kseifried () redhat com>
Date: Tue, 27 Jan 2015 22:37:46 -0700
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776424 Source: kgb-bot Version: 1.33-2 Severity: important Tags: security 2015.01.19 18:08:39: Listening on http://0.0.0.0:9999?session=KGB 2015.01.19 18:08:43: Connected to freenode (holmes.freenode.net) 2015.01.19 18:08:43: Joining #commits... 2015.01.19 18:08:43: Connected to oftc (graviton.oftc.net) 2015.01.19 18:08:43: Joining #ikiwiki #vcs-home #git-annex... Did not get DONE/CLOSE event for Wheel ID 73 from IP 222.186.34.155 at /usr/share/perl5/POE/Component/Server/SimpleHTTP.pm line 221. I had a problem posting to event Got_Request of session SOAPServer for DIR handler '.*'. As reported by Kernel: 'No such file or directory', perhaps the session name is spelled incorrectly for this handler? at /usr/share/perl5/POE/Session.pm line 483. This has happened to me twice now, and it takes the bot down. not sure how exploitable this is though. -- Kurt Seifried -- Red Hat -- Product Security -- Cloud PGP A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993
Attachment:
signature.asc
Description: OpenPGP digital signature
Current thread:
- kgb-bot can be crashed by some network traffic Kurt Seifried (Jan 27)
- Re: kgb-bot can be crashed by some network traffic Pierre Schweitzer (Jan 28)
- Re: kgb-bot can be crashed by some network traffic cve-assign (Feb 07)