On Mon, Nov 14, 2005 at 08:21:32AM +0100, Martin Schulze wrote: > Mark Brown wrote:
> > The enclosed bug was filed by Leafnode upstream. I believe this patch > > contains the relevant fix: > Err, could you explain the security implication? A malicious or buggy upstream server could hang the Leafnode client process fetchnews, rendering it impossible to synchronise with upstream or perform other Leafnode database updates until the process is otherwise terminated. This causes a denial of service. Upstream is very insistent that this be fixed. -- "You grabbed my hand and we fell into it, like a daydream - or a fever."
signature.asc
Description: Digital signature
