Re: [exim-dev] [Bug 2571] Out-of-bound buffer read leads to …

Kezdőlap
Üzenet törlése
Válasz az üzenetre
Szerző: Jeremy Harris
Dátum:  
Címzett: exim-dev
Tárgy: Re: [exim-dev] [Bug 2571] Out-of-bound buffer read leads to Authentication Bypass in Exim SPA authentication method
On 07/05/2020 16:57, admin--- via Exim-dev wrote:
> https://bugs.exim.org/show_bug.cgi?id=2571
>
> --- Comment #4 from Andreas Metzler <eximusers@???> ---
> Should this get a CVE?


Possibly.

Pro:  people who watch for CVEs get a heads-up they should pull in the
      fix.


Con:  because of the publication of the bug, there was no pre-annouce
      notifying the issue and giving time for the major distros to
      pick up the bug before the issue went public.


I'm not sure I have the energy.
--
Cheers,
Jeremy