Bug#479036: CVE-2008-1996: DoS due to too many connections

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#479036: CVE-2008-1996: DoS due to too many connections
From: Steffen Joeris <steffen.joeris@skolelinux.de>
Date: Sat, 03 May 2008 05:54:18 +1000
Message-id: <[🔎] 20080502195418.1910.48611.reportbug@hannah>
Reply-to: Steffen Joeris <steffen.joeris@skolelinux.de>, 479036@bugs.debian.org

Package: licq
Severity: normal

Hi

The following CVE(0) has been issued against licq.

CVE-2008-1996:

licq before 1.3.6 allows remote attackers to cause a denial of service
(file-descriptor exhaustion and application crash) via a large number of
connections. 

A proposed patch can be found here(1).

Cheers
Steffen

(0) http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1996

(1) http://www.licq.org/changeset/6146

Reply to:

Follow-Ups:
- Bug#479036: CVE-2008-1996: DoS due to too many connections
  - From: Frank Lichtenheld <djpig@debian.org>
- Bug#479036: marked as done (CVE-2008-1996: DoS due to too many connections)
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

Prev by Date: edenmath.app 1.1.1a-6 MIGRATED to testing
Next by Date: Bug#410401: scheme48: Please package new upstream version
Previous by thread: edenmath.app 1.1.1a-6 MIGRATED to testing
Next by thread: Bug#479036: CVE-2008-1996: DoS due to too many connections
Index(es):
- Date
- Thread