[<prev] [next>] [<thread-prev] [thread-next>] [month] [year] [list]
Date: Fri, 4 Sep 2009 15:37:15 +0200
From: Nico Golde <oss-security+ml@...lde.de>
To: oss-security@...ts.openwall.com
Subject: Re: CVE id request: silc-toolkit
Hi,
* Steven M. Christey <coley@...us.mitre.org> [2009-09-04 12:08]:
> On Mon, 31 Aug 2009, Nico Golde wrote:
>
> > silc-toolkit upstream fixed [0] various security issues which
> > from my assessment allow an attacker arbitrary code
> > execution. I'd like to get some CVE ids for these.
> >
> > | ASN1: Fix stack variable overwrite when encoding OID.
>
> This was actually fixed in 1.1.8 back in 2008:
Which CVE id is that? I can't find a CVE-2008- issue
describing this.
> http://silcnet.org/docs/changelog/SILC%20Toolkit%201.1.8
>
> Use CVE-2008-7159, to be filled in later.
>
> > | Fixed string format vulnerability in client entry handling.
> > |
> > | Reported and patch provided by William Cummings.
> >
> > This one allows an attacker to execute arbitrary code, tested.
> >
> > | More string format fixes in silcd and client libary
>
> Use CVE-2009-3051 for both of these format strings, to be filled in later.
>
> > | HTTP: fix stack overwrite due to format string error.
>
> Appears to be from
> http://silcnet.org/docs/changelog/SILC%20Toolkit%201.1.9.
>
> Use CVE-2008-7160, to be filled in later.
Thanks!
Cheers
Nico
--
Nico Golde - http://www.ngolde.de - nion@...ber.ccc.de - GPG: 0xA0A0AAAA
For security reasons, all text in this mail is double-rot13 encrypted.
[ CONTENT OF TYPE application/pgp-signature SKIPPED ]
Please check out the
Open Source Software Security Wiki, which is counterpart to this
mailing list.
Powered by Openwall GNU/*/Linux -
Powered by OpenVZ