Package: libdnet
Version: 2.52
Severity: important
Tags: fixed-upstream, security

The function dnet_daemon() has a bug which allows an attacker
in some cases to fork the daemon's listen-loop processes on
remote system.

The bug is in the handling of auto rejection of new connections.

This bug is fixed in upstream. The buggy code is new in version
2.49 so older versions are not affected. stable (lenny) and
oldstable (etch) are not affected.



-- 
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]

Reply via email to