* Roger Leigh ([EMAIL PROTECTED]) [050602 20:10]:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Steve Langasek [EMAIL PROTECTED] writes:
On Thu, Jun 02, 2005 at 02:54:40PM +0100, Roger Leigh wrote:
[ettercap]
Release Team: please will you accept this for sarge?
Is high urgency still
Package: ettercap
Severity: grave
Tags: security
Hi!
There is a buffer overflow in curses_msg() in ec_curses.c, which can
be exploited by remote attackers to execute arbitrary code. Details at
http://secunia.com/advisories/15535
http://ettercap.sourceforge.net/history.php
This is
tags 311615 + patch pending
thanks
Hi,
Here's a patch to fix the vulnerability, taken from diffing upstream
sources. Despite the changelog, I've not uploaded this. Please apply
the patch and upload it, or let me know and I'll do it. Thanks.
You might also want to run it by the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi folks,
I've patched ettercap to fix this bug #311615. The patch is filed in
the bug report, and example packages are here:
http://people.debian.org/~rleigh/ettercap/
I don't use ettercap myself, so I can't test it properly, though the
change
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Roger Leigh [EMAIL PROTECTED] writes:
I've patched ettercap to fix this bug #311615. The patch is filed in
the bug report, and example packages are here:
http://people.debian.org/~rleigh/ettercap/
If anyone cares to review it and/or upload
On Thu, Jun 02, 2005 at 02:54:40PM +0100, Roger Leigh wrote:
I've patched ettercap to fix this bug #311615. The patch is filed in
the bug report, and example packages are here:
http://people.debian.org/~rleigh/ettercap/
If anyone cares to review it and/or upload it, it's all yours, or
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Steve Langasek [EMAIL PROTECTED] writes:
On Thu, Jun 02, 2005 at 02:54:40PM +0100, Roger Leigh wrote:
[ettercap]
Release Team: please will you accept this for sarge?
Is high urgency still OK, or should I make it critical?
At this point, it's
7 matches
Mail list logo
