[Secure-testing-commits] r7036 - data/CVE

nion at alioth.debian.org nion at alioth.debian.org
Sat Oct 20 11:22:54 UTC 2007


Author: nion
Date: 2007-10-20 11:22:53 +0000 (Sat, 20 Oct 2007)
New Revision: 7036

Modified:
   data/CVE/list
Log:
CVE-2007-5365 dhcp3 not-affected


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-10-20 11:18:54 UTC (rev 7035)
+++ data/CVE/list	2007-10-20 11:22:53 UTC (rev 7036)
@@ -727,7 +727,7 @@
 CVE-2007-5365 (Stack-based buffer overflow in the cons_options function in options.c ...)
 	{DSA-1388-1}
 	- dhcp <unfixed> (medium; bug #446354)
-	TODO: check dhcp3
+	- dhcp3 <not-affected> (dhcp3 does enforce a fixed minimum paket size if it is lower, see line 513 in options.c)
 	NOTE: dhcp has a request for removal #446386
 CVE-2007-5364 (** DISPUTED ** ...)
 	NOT-FOR-US: ViArt Shopping Cart




More information about the Secure-testing-commits mailing list