Re: [Full-Disclosure] iDEFENSE Security Advisory 01.14.05: Exim dns_buld_reverse() Buffer Overflow Vulnerability
From: Florian Weimer (fw_at_deneb.enyo.de)
Date: 01/16/05
- Previous message: Sune Kloppenborg Jeppesen: "[Full-Disclosure] [ GLSA 200501-25 ] Squid: Multiple vulnerabilities"
- In reply to: Marc Haber: "Re: [Full-Disclosure] iDEFENSE Security Advisory 01.14.05: Exim dns_buld_reverse() Buffer Overflow Vulnerability"
- Next in thread: Nick FitzGerald: "Re: [Full-Disclosure] iDEFENSE Security Advisory 01.14.05: Exim dns_buld_reverse() Buffer Overflow Vulnerability"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: Marc Haber <mh+full-disclosure@zugschlus.de> Date: Sun, 16 Jan 2005 21:47:05 +0100
* Marc Haber:
>> VIII. DISCLOSURE TIMELINE
>>
>> 09/30/2004 Initial vendor notification
>> 09/30/2004 Initial vendor response
> 01/04/2005 Vendor releases a patch
(publicly, by the way)
> 01/14/2005 Vendor releases interim release incorporating the patch
>> 01/14/2005 Public disclosure
I'd a bit surprised if this timeline were correct. I can't really
imagine Philip sitting on this bug for a couple of months.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
- Previous message: Sune Kloppenborg Jeppesen: "[Full-Disclosure] [ GLSA 200501-25 ] Squid: Multiple vulnerabilities"
- In reply to: Marc Haber: "Re: [Full-Disclosure] iDEFENSE Security Advisory 01.14.05: Exim dns_buld_reverse() Buffer Overflow Vulnerability"
- Next in thread: Nick FitzGerald: "Re: [Full-Disclosure] iDEFENSE Security Advisory 01.14.05: Exim dns_buld_reverse() Buffer Overflow Vulnerability"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
