22 Feb 20:22
libpre3 stack overflow
From: Andy Wright <myside <at> myside.mine.nu>
Subject: libpre3 stack overflow
Newsgroups: gmane.comp.web.lighttpd
Date: 2008-02-22 19:25:53 GMT
Subject: libpre3 stack overflow
Newsgroups: gmane.comp.web.lighttpd
Date: 2008-02-22 19:25:53 GMT
Their is a security update for libpre3 and devel packages for Ubuntu
Server 6.06:
Version 7.4-0ubuntu0.7.04.2:
* SECURITY UPDATE: stack overflow when handling long UTF8 strings.
* pcre_compile.c, testdata/test{in,out}put4: upstream changes from 7.6
backported, thanks to Tomas Hoger and Florian Weimer.
* References
CVE-2008-0674
I compile lighttpd from source, should I be overly concerned with the
previous build without this fix?
--
--
___________________________________
Andy Wright andy.wright <at> extracted.org
IT/IS Professional For public and private use.
IT/IS Forum # (608)554-0030 VM KEY ID 7CECF855
Open Forum Skype: extracted http://7cecf855.extracted.org
Thanks BB, "water is wet"
ALTERNATIVE: andy.wright <at> yahoo.com
___________________________________
RSS Feed