[Secure-testing-team] Bug#761002: squid3: CVE-2014-6270: off by one in snmp subsystem
Salvatore Bonaccorso
carnil at debian.org
Tue Sep 9 19:07:56 UTC 2014
Source: squid3
Version: 3.1.6-1.2
Severity: important
Tags: security upstream patch
Hi
A off-by-one on the heap inside the snmpHandleUdp() function was
reported by Sebastian Krahmer[1]. Patch can be found on Novell's
Bugzilla. This got assigned CVE-2014-6270.
[1] https://bugzilla.novell.com/show_bug.cgi?id=895773
Regards,
Salvatore
More information about the Secure-testing-team
mailing list