Re: Typo in webwml/english/News/weekly/2004/21/index.wml

To: SUGIYAMA Tomoaki <tomos@webmasters.gr.jp>
Cc: debian-www@lists.debian.org
Subject: Re: Typo in webwml/english/News/weekly/2004/21/index.wml
From: Matt Kraai <kraai@ftbfs.org>
Date: Thu, 27 May 2004 09:29:03 -0300
Message-id: <[🔎] 20040527122903.GD8483@ftbfs.org>
Mail-followup-to: SUGIYAMA Tomoaki <tomos@webmasters.gr.jp>, debian-www@lists.debian.org
In-reply-to: <[🔎] 877juy9o61.wl%tomos@webmasters.gr.jp>
References: <[🔎] 877juy9o61.wl%tomos@webmasters.gr.jp>

On Thu, May 27, 2004 at 07:09:42PM +0900, SUGIYAMA Tomoaki wrote:
> I think that it is not "Buffer overflow" but "Heap overflow" on
> line 136 in webwml/english/News/weekly/2004/21/index.wml file.
> 
> > <li><a href="$(HOME)/security/2004/dsa-505">cvs</a> --
> >     Buffer overflow.

The CVE advisory says

 Heap-based buffer overflow in CVS 1.11.x up to 1.11.15, and
 1.12.x up to 1.12.7, when using the pserver mechanism allows
 remote attackers to execute arbitrary code via Entry lines.

so I think both descriptions are correct.

-- 
Matt Kraai            kraai@ftbfs.org            http://ftbfs.org/

Reply to:

Follow-Ups:
- Re: Typo in webwml/english/News/weekly/2004/21/index.wml
  - From: SUGIYAMA Tomoaki <tomos@webmasters.gr.jp>

References:
- Typo in webwml/english/News/weekly/2004/21/index.wml
  - From: SUGIYAMA Tomoaki <tomos@webmasters.gr.jp>

Prev by Date: Bug#251205: doc/docpolicy: rather a link to the list archives than to the list address
Next by Date: Bug#242675: marked as done (Requesting anchor for Debian projects on http://www.debian.org/devel/)
Previous by thread: Typo in webwml/english/News/weekly/2004/21/index.wml
Next by thread: Re: Typo in webwml/english/News/weekly/2004/21/index.wml
Index(es):
- Date
- Thread