inn-2.2 inews buffer overflow
Russ Allbery
rra at stanford.edu
Sun Aug 22 04:54:00 UTC 1999
Jeff King <peff at dbd.com> writes:
> On 20 Aug 1999, Russ Allbery wrote:
>> I've committed your patch against both the current and STABLE branches.
>> The header parsing in INN really needs to be integrated between the
>> multiple different bits of code that uses it at some point.
> This particular bug has some import security implications. Will you (or
> somebody from the INN team) take care of passing this information on to
> package distributors (RedHat, et al) and the appropriate mailing lists
> (Bugtraq), or should I do that?
I'll draft something. I want to go over the rest of inews and make sure
there aren't any more.
James, being official INN person and all, do you want to send it out? And
do we know who the Red Hat and Debian packagers are for INN so that we can
let them know about this?
--
Russ Allbery (rra at stanford.edu) <URL:http://www.eyrie.org/~eagle/>
More information about the inn-workers
mailing list