Full Disclosure mailing list archives
Re: iDEFENSE Security Advisory 01.14.05: Exim dns_buld_reverse() Buffer Overflow Vulnerability
From: Florian Weimer <fw () deneb enyo de>
Date: Sun, 16 Jan 2005 21:47:05 +0100
* Marc Haber:
VIII. DISCLOSURE TIMELINE 09/30/2004 Initial vendor notification 09/30/2004 Initial vendor response
01/04/2005 Vendor releases a patch
(publicly, by the way)
01/14/2005 Vendor releases interim release incorporating the patch
01/14/2005 Public disclosure
I'd a bit surprised if this timeline were correct. I can't really imagine Philip sitting on this bug for a couple of months. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- iDEFENSE Security Advisory 01.14.05: Exim dns_buld_reverse() Buffer Overflow Vulnerability idlabs-advisories (Jan 14)
- Re: iDEFENSE Security Advisory 01.14.05: Exim dns_buld_reverse() Buffer Overflow Vulnerability Marc Haber (Jan 16)
- Re: iDEFENSE Security Advisory 01.14.05: Exim dns_buld_reverse() Buffer Overflow Vulnerability Florian Weimer (Jan 16)
- Re: iDEFENSE Security Advisory 01.14.05: Exim dns_buld_reverse() Buffer Overflow Vulnerability Nick FitzGerald (Jan 16)
- <Possible follow-ups>
- iDEFENSE Security Advisory 01.14.05: Exim dns_buld_reverse() Buffer Overflow Vulnerability customer service mailbox (Jan 19)
- Re: iDEFENSE Security Advisory 01.14.05: Exim dns_buld_reverse() Buffer Overflow Vulnerability Marc Haber (Jan 16)