[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: DSA-117-1 cvs -- improper variable initialization
From: |
Larry Jones |
Subject: |
Re: DSA-117-1 cvs -- improper variable initialization |
Date: |
Wed, 6 Mar 2002 13:27:18 -0500 (EST) |
Dan Peterson writes:
>
> Is this just a problem with Debian CVS?
>
> http://www.debian.org/security/2002/dsa-117
>
> I'm assuming Debian CVS comes from the standard CVS source, so couldn't
> this be a problem on other platforms?
Yes, but it was fixed long ago (in CVS 1.10.8) and I can't even begin to
imagine any way to exploit it.
-Larry Jones
Hello, I'm wondering if you sell kegs of dynamite. -- Calvin
- Abandoned CVS server processes, Dan Peterson, 2002/03/03
- Re: Abandoned CVS server processes, Stewart Brodie, 2002/03/04
- Re: Abandoned CVS server processes, Larry Jones, 2002/03/04
- Re: Abandoned CVS server processes, Dan Peterson, 2002/03/06
- Re: Abandoned CVS server processes, Larry Jones, 2002/03/07
- Re: Abandoned CVS server processes, Dan Peterson, 2002/03/07
- CVS "Official" Releases, Dan Peterson, 2002/03/08
- Connection hijacking, Brian Smith, 2002/03/08
- Re: CVS "Official" Releases, Larry Jones, 2002/03/09
- Re: Abandoned CVS server processes, David Fuller, 2002/03/08
- Re: Abandoned CVS server processes, Larry Jones, 2002/03/08
- Re: Abandoned CVS server processes, Dan Peterson, 2002/03/14
- Re: Abandoned CVS server processes, Larry Jones, 2002/03/15