oss-sec mailing list archives
Re: CVE request: heap overflow in tcptrack < 1.4.2
From: Josh Bressers <bressers () redhat com>
Date: Tue, 9 Aug 2011 15:50:20 -0400 (EDT)
----- Original Message -----
A heap overflow in the parsing of tcptrack's command line was found. The details are pretty sparse, but here are some references: http://www.rhythm.cx/~steve/devel/tcptrack/#news https://bugs.gentoo.org/show_bug.cgi?id=377917 https://bugzilla.redhat.com/show_bug.cgi?id=729096
Please use CVE-2011-2903.
Thanks.
--
JB
Current thread:
- CVE request: heap overflow in tcptrack < 1.4.2 Vincent Danen (Aug 09)
- Re: CVE request: heap overflow in tcptrack < 1.4.2 Josh Bressers (Aug 09)
- Re: CVE request: heap overflow in tcptrack < 1.4.2 Steven M. Christey (Aug 31)
- Re: CVE request: heap overflow in tcptrack < 1.4.2 Moritz Muehlenhoff (Sep 13)
- Re: CVE request: heap overflow in tcptrack < 1.4.2 Steven M. Christey (Aug 31)
- Re: CVE request: heap overflow in tcptrack < 1.4.2 Josh Bressers (Aug 09)