Re: [exim-dev] [Bug 2571] Out-of-bound buffer read leads to …

Page principale
Ce message fait partie du fil suivant :
M+++++++++\Arborescence complète du fil triée par date
MMMMMMMMMMMadmin à <-
.....Madmin à ->
Supprimer ce message
Répondre à ce message
Auteur: Jeremy Harris
Date:  
À: exim-dev
Sujet: Re: [exim-dev] [Bug 2571] Out-of-bound buffer read leads to Authentication Bypass in Exim SPA authentication method
On 07/05/2020 16:57, admin--- via Exim-dev wrote:
> https://bugs.exim.org/show_bug.cgi?id=2571
>
> --- Comment #4 from Andreas Metzler <eximusers@???> ---
> Should this get a CVE?

Possibly. 

Pro:  people who watch for CVEs get a heads-up they should pull in the
      fix.


Con:  because of the publication of the bug, there was no pre-annouce
      notifying the issue and giving time for the major distros to
      pick up the bug before the issue went public.


I'm not sure I have the energy.
--
Cheers,
Jeremy

Ce message a été envoyé sur les listes de diffusion suivantes :
Exim-dev
Informations sur la liste de diffusion | Messages voisins		<-[exim-dev] [Bug 2572] auths/call_radius.c compilation failures[exim-dev] [Bug 2567] $domain_verified - partially documented but non-existing->
Tahini and Hummus and Cumin Development Archives administré par cumin AdminsLurker (version 2.3)