Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <CAC8HS2EdCCfBhibB3y_QWL0WLX_Dyhua=WUPR0vOLBuHuRodMQ@mail.gmail.com>
Date: Tue, 28 Aug 2012 09:50:41 +0100
From: "Simon L. B. Nielsen" <simon@...eBSD.org>
To: Raphael Geissert <geissert@...ian.org>
Cc: oss-security@...ts.openwall.com, secteam@...ebsd.org
Subject: Re: CVE for FreeBSD SCTP remote DoS?

On Tue, Aug 28, 2012 at 7:25 AM, Raphael Geissert <geissert@...ian.org> wrote:
> Hi everyone,
>
> There appears to be a remote DoS (via a NULL pointer dereference in the
> kernel) vulnerability in FreeBSD's SCTP implementation[1].
>
> Has a CVE id been assigned to it already?
>
> [1]http://www.exploit-db.com/exploits/20226/

I don't think have one gotten assigned, but probably should. Probably
best to go to Mitre to make sure we don't accidentally get a
duplicate. Feel free to requeste one, or I can do it later. Please cc:
secteam@...ebsd.org on any request to minimize risk of confusion.

-- 
Simon L. B. Nielsen
Hat: FreeBSD Security Officer

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.