Hi, * [EMAIL PROTECTED] <[EMAIL PROTECTED]> [2007-09-07 12:32]: > Author: fw > CVE-2007-4743: krb5, librpcsecgss > Modified: data/CVE/list > =================================================================== > --- data/CVE/list 2007-09-07 05:52:01 UTC (rev 6528) > +++ data/CVE/list 2007-09-07 06:40:13 UTC (rev 6529) > @@ -1,3 +1,6 @@ > +CVE-2007-4743 [Incorrect fix for CVE-2007-3999: buffer overflow in RPC > library] > + - krb5 <unfixed> (high) > + - librpcsecgss <unfixed> > CVE-2007-4731
Is there any public information about why exactly this patch is wrong? Kind regards Nico -- Nico Golde - http://ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted.
pgplVfBGDXihO.pgp
Description: PGP signature
_______________________________________________ Secure-testing-team mailing list [email protected] http://lists.alioth.debian.org/mailman/listinfo/secure-testing-team
