[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] GNU libc/regcomp(3) Multiple Vulnerabilities

To: Maksymilian Arciemowicz <cxib@xxxxxxxxxxxxxxxxxx>
Subject: Re: [Full-disclosure] GNU libc/regcomp(3) Multiple Vulnerabilities
From: cpolish@xxxxxxxxxxxx
Date: Sat, 8 Jan 2011 17:14:55 -0800

> [ GNU libc/regcomp(3) Multiple Vulnerabilities ]
> 
> Author: Maksymilian Arciemowicz
> http://securityreason.com/
> http://cxib.net/
> Date:
> - - Dis.: 01.10.2010
> - - Pub.: 07.01.2011
> 
> CERT: VU#912279
> CVE:
> CVE-2010-4051
> CVE-2010-4052
> 
> Affected (tested):
> - - Ubuntu 10.10
> - - Slackware 13
> - - Gentoo 18.10.2010
> - - FreeBSD 8.1 (grep(1))
> - - NetBSD 5.0.2 (grep(1))

Slackware 12.2 is also vulnerable
-- 
Charles Polisher

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] GNU libc/regcomp(3) Multiple Vulnerabilities
  - From: Maksymilian Arciemowicz

Prev by Date: [Full-disclosure] Cross-Site Scripting vulnerability in Joostina
Next by Date: [Full-disclosure] IBM DeveloperWorks Pwned and Defaced
Previous by thread: [Full-disclosure] GNU libc/regcomp(3) Multiple Vulnerabilities
Next by thread: Re: [Full-disclosure] GNU libc/regcomp(3) Multiple Vulnerabilities
Index(es):
- Date
- Thread