Re: CAN-2005-1344: Buffer overflow in htdigest

To: Adam Conrad <adconrad@0c3.net>, Debian Apache Maintainers <debian-apache@lists.debian.org>
Subject: Re: CAN-2005-1344: Buffer overflow in htdigest
From: Martin Schulze <joey@infodrom.org>
Date: Sun, 17 Jul 2005 20:56:23 +0200
Message-id: <[🔎] 20050717185623.GA29971@finlandia.infodrom.north.de>
In-reply-to: <20050430051814.GR7744@finlandia.infodrom.north.de>
References: <20050428053408.GR7744@finlandia.infodrom.north.de> <33804.165.228.245.41.1114821155.squirrel@mail.0c3.net> <20050430051814.GR7744@finlandia.infodrom.north.de>

Martin Schulze wrote:
> Adam Conrad wrote:
> > Martin Schulze wrote:
> > > Are you aware of this:
> > >
> > >
> > > http://www.lucaercoli.it/advs/htdigest.txt
> > > http://www.securiteam.com/unixfocus/5EP061FEKC.html
> > > http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1344
> > 
> > We are now.  :)  Do you have a patch, or should I fix it myself when I get
> > home from the Ubuntu conference?
> 
> I have not yet taken a deeper look, so no patch.  We also need to check
> whether woody is affected.

Umh... Did anybody bother to check yet?

Regards,

	Joey

-- 
Of course, I didn't mean that, which is why I didn't say it.
What I meant to say, I said.              -- Thomas Bushnell

Please always Cc to me when replying to me on the lists.

Reply to:

Follow-Ups:
- Re: CAN-2005-1344: Buffer overflow in htdigest
  - From: Adam Conrad <adconrad@0c3.net>

Prev by Date: Unidentified subject!
Next by Date: Re: Final Notification
Previous by thread: Unidentified subject!
Next by thread: Re: CAN-2005-1344: Buffer overflow in htdigest
Index(es):
- Date
- Thread