thr3ads.net - Secure testing team - [Secure-testing-team] Bug#535340: mapserver: heap-based buffer overflow because due to integer overflow in content-length handling [Jul 2009]

If this information is useful, please help other people find it:
Share via:

Twitter
Facebook
Email

Nico Golde

2009-Jul-01 17:40 UTC

[Secure-testing-team] Bug#535340: mapserver: heap-based buffer overflow because due to integer overflow in content-length handling

Package: mapserver
Severity: grave
Tags: security
Justification: user security hole

Hi,
As described in http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=523027#14
the fix for CVE-2009-0840 was not correct. A new CVE id got assigned to this:
CVE-2009-2281. Please reference it in the changelog if you fix this bug.

Cheers
Nico

Secure testing team - Jul 2009 - Bug#535340: mapserver: heap-based buffer overflow because due to integer overflow in content-length handling

[Secure-testing-team] Bug#535340: mapserver: heap-based buffer overflow because due to integer overflow in content-length handling