Hannes Gredler <[EMAIL PROTECTED]> writes:
> i have checked in fixes for ldp/bgp plus testfiles for the 3.8 branch;
You rock! Many thanks to you (and Guy) for providing the fixes.
> so all 4 reported exploits are fixed now in the 3.8 branch;
I also checked tcpdump 3.6 (current version in Debia
On Tue, Apr 26, 2005 at 07:40:42PM +0200, Romain Francoise wrote:
| Hannes Gredler <[EMAIL PROTECTED]> writes:
|
| > you're right for 3.8 it makes sense ... i did check meanwhile and both
| > isis and rsvp are affected [just committed the outstanding 3.8 fix for
| > rsvp]
|
| Okay, thanks. I hav
Hannes Gredler <[EMAIL PROTECTED]> writes:
> you're right for 3.8 it makes sense ... i did check meanwhile and both
> isis and rsvp are affected [just committed the outstanding 3.8 fix for
> rsvp]
Okay, thanks. I have fixes for isis and rsvp but bgp and ldp are more
problematic, they're said to
On Mon, Apr 25, 2005 at 07:16:39PM +0200, Romain Francoise wrote:
| Hannes Gredler <[EMAIL PROTECTED]> writes:
|
| > for software [3.9,cvs] that has not even been released yet ?
|
| All the exploits mention tcpdump 3.8.x as being affected. I didn't run
| them to check that it's really the case,
-BEGIN PGP SIGNED MESSAGE-
> "Romain" == Romain Francoise <[EMAIL PROTECTED]> writes:
>> for software [3.9,cvs] that has not even been released yet ?
Romain> All the exploits mention tcpdump 3.8.x as being affected. I
Romain> didn't run them to check that it's really the
Hannes Gredler <[EMAIL PROTECTED]> writes:
> for software [3.9,cvs] that has not even been released yet ?
All the exploits mention tcpdump 3.8.x as being affected. I didn't run
them to check that it's really the case, though... did you?
--
,''`.
: :' :Romain Francoise <[EMAIL PROTEC
for software [3.9,cvs] that has not even been released yet ? - /hannes
On Mon, Apr 25, 2005 at 05:28:51PM +0200, Romain Francoise wrote:
| Can someone request CAN numbers for these? Michael?
|
| --
| ,''`.
| : :' :Romain Francoise <[EMAIL PROTECTED]>
| `. `' http://people.de
Can someone request CAN numbers for these? Michael?
--
,''`.
: :' :Romain Francoise <[EMAIL PROTECTED]>
`. `' http://people.debian.org/~rfrancoise/
`-
-
This is the tcpdump-workers list.
Visit https://lists.sandelman.ca/ to unsubscribe.
On Sun, Apr 24, 2005 at 04:02:56PM -0400, v9 wrote:
|
| i'm not totally sure this is the right place to send this, but i hope
| so.
it is the right place ...
|
| 3 infinite loop dos bugs... the bgp and ldp one SEEM to be fixed in the
| cvs versions...the isis one isn't.
have checked in f
v9 wrote:
3 infinite loop dos bugs... the bgp and ldp one SEEM to be fixed in the
cvs versions...the isis one isn't.
I've checked in a change that *should* fix the ISIS loop, but I haven't
tested it directly.
-
This is the tcpdump-workers list.
Visit https://lists.sandelman.ca/ to unsubscribe.
i'm not totally sure this is the right place to send this, but i hope
so.
3 infinite loop dos bugs... the bgp and ldp one SEEM to be fixed in the
cvs versions...the isis one isn't.
attached demonstrational code.
/*[ tcpdump[3.8.x/3.9.1]: (GRE) isis_print() infinite loop DOS. ]
11 matches
Mail list logo
