[Bug 192990] New: CVE-2005-2295 - netpanzer server remote DOS

Wed May 24 17:20:07 UTC 2006

Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=192990

           Summary: CVE-2005-2295 - netpanzer server remote DOS
           Product: Fedora Extras
           Version: fc5
          Platform: All
               URL: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2005-2295
        OS/Version: Linux
            Status: NEW
          Severity: normal
          Priority: normal
         Component: netpanzer
        AssignedTo: hugo at devin.com.br
        ReportedBy: tibbs at math.uh.edu
         QAContact: extras-qa at fedoraproject.org
                CC: extras-qa at fedoraproject.org,fedora-security-
                    list at redhat.com

(from the CVE):
NetPanzer 0.8 and earlier allows remote attackers to cause a denial of service
(infinite loop) via a packet with a zero datablock size.

It seems this has been fixed in upstream SVN, but no release has been made and
unfortunately upstream webSVN seems not to be responding for me.

-- 
Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.