Control: retitle -1 yardradius: CVE-2013-4147: Multiple Format String
Vulnerabilities
Hi
Retitling the bugreport as a CVE (CVE-2013-4147) was assigned to this
issue, see [1].
[1] http://marc.info/?l=oss-security&m=137421497309984&w=2
Regards,
Salvatore
--
To UNSUBSCRIBE, email to debian-bu
> Date: Mon, 1 Jul 2013 12:31:46 +0200
> From: fran...@debian.org
> To: m...@hamidx9.ir; 714...@bugs.debian.org
> CC: sub...@bugs.debian.org
> Subject: Re: Bug#714612: yardradius: Multiple Format String Vulnerabilities
>
> Hi, thanks for your report. While the nex
On Mon, Jul 01, 2013 at 02:34:01PM +0430, Hamid Zamani wrote:
> Package: yardradius
> Version: 1.1.2-4
> Severity: critical ( security)
>
> Dear Maintainer,
>
> Several Format String vulnerabilities was found in the latest `yardradius`
> version as explained further below :
>
> src/log.c :
>
>
Package: yardradius
Version: 1.1.2-4
Severity: critical ( security)
Dear Maintainer,
Several Format String vulnerabilities was found in the latest `yardradius`
version as explained further below :
src/log.c :
void
log_msg(int priority,char *fmt, va_list args)
{
...
char buffer[1024];
...
vfp
4 matches
Mail list logo