oss-security February 2011 archive
Main Archive Page > Month Archives  > oss-security archives
oss-security: Re: [oss-security] cve request: eglibc memory corr

Re: [oss-security] cve request: eglibc memory corruption

From: Michael Gilbert <michael.s.gilbert_at_nospam>
Date: Mon Feb 28 2011 - 21:54:01 GMT
To: oss-security@lists.openwall.com

On Mon, 28 Feb 2011 15:55:34 -0500 (EST) Josh Bressers wrote:

> ----- Original Message -----
> > Hi,
> >
> > An issue was disclosed for eglibc [0],[1]. Please assign a CVE id for
> > it.
> >
> > Thanks,
> > Mike
> >
> > [0] http://seclists.org/fulldisclosure/2011/Feb/635
> > [1] http://bugs.debian.org/615120
>
> It should be noted this also affects glibc.
> Does anyone know when this was fixed in glibc by chance? The bug has no details.

According to a follow-up message to the thread above [0], this was fixed
via [1], which is the patch Debian used to fix the issue.

Best wishes,
Mike

[0]http://seclists.org/fulldisclosure/2011/Feb/644
[1]http://sourceware.org/git/?p=glibc.git;a=commitdiff;h=f15ce4d8dc139523fe0c273580b604b2453acba6