Bug#778599: Vulnerabilities in nanohttp

On Thu, 21 Apr 2016 02:58:18 PM Salvatore Bonaccorso wrote: > Given the package looks unmaintained (last update by maintainer back > in 20 Jun 2010, I think it is the best option to remove the package as > well from unstable). It is already gone in testing, so will not be > included in stretch and

Bug#778599: Vulnerabilities in nanohttp

B0;115;0cOn Thu, Apr 21, 2016 at 06:58:18AM +0200, Salvatore Bonaccorso wrote: > Hi, > > On Wed, Apr 20, 2016 at 11:01:29PM +0200, Sebastian Andrzej Siewior wrote: > > On 2015-03-15 06:42:08 [+0100], Salvatore Bonaccorso wrote: > > > On Tue, Feb 17, 2015 at 10:07:06AM +, Patrick Coleman

Bug#778599: Vulnerabilities in nanohttp

Hi, On Wed, Apr 20, 2016 at 11:01:29PM +0200, Sebastian Andrzej Siewior wrote: > On 2015-03-15 06:42:08 [+0100], Salvatore Bonaccorso wrote: > > On Tue, Feb 17, 2015 at 10:07:06AM +, Patrick Coleman wrote: > > > * Remote null pointer dereference > > > A remote user can cause a null pointer

Bug#778599: Vulnerabilities in nanohttp

On 20 Apr 2016 10:01 pm, "Sebastian Andrzej Siewior" wrote: > > On 2015-03-15 06:42:08 [+0100], Salvatore Bonaccorso wrote: > > On Tue, Feb 17, 2015 at 10:07:06AM +, Patrick Coleman wrote: > > > * Remote null pointer dereference > > > A remote user can cause a null

Bug#778599: Vulnerabilities in nanohttp

On 2015-03-15 06:42:08 [+0100], Salvatore Bonaccorso wrote: > On Tue, Feb 17, 2015 at 10:07:06AM +, Patrick Coleman wrote: > > * Remote null pointer dereference > > A remote user can cause a null pointer dereference by sending a > > malformed Authorization: header. > >

Bug#778599: Vulnerabilities in nanohttp

Hi, On Tue, Feb 17, 2015 at 10:07:06AM +, Patrick Coleman wrote: * Remote null pointer dereference A remote user can cause a null pointer dereference by sending a malformed Authorization: header. http://patrick.ld.net.au/libcsoap/nanohttp-nullp-1.patch For this issue CVE-2015-2297 was