[Bug 811422] Re: Exploitable integer overflow on x86 in mod SetEnvIf, leading to buffer overwrite
halfdog
me at halfdog.net
Fri Nov 4 09:29:24 UTC 2011
Information Joe Orton:
We'd prefer to discuss the appropriate fix for this on the public
mailing list, so could you publish your advisory as soon as is
convenient. We'll follow up with public discussion and patches as
appropriate.
Please use the CVE name CVE-2011-3607 for this issue.
Very good discussion:
http://www.gossamer-threads.com/lists/apache/dev/403775
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-3607
** Visibility changed to: Public
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in Ubuntu.
https://bugs.launchpad.net/bugs/811422
Title:
Exploitable integer overflow on x86 in mod SetEnvIf, leading to buffer
overwrite
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/811422/+subscriptions
More information about the Ubuntu-server-bugs
mailing list