[Full-disclosure] [ GLSA 200611-08 ] RPM: Buffer overflow
Matthew Flaschen
matthew.flaschen at gatech.edu
Tue Nov 14 02:26:07 GMT 2006
Aren't RPMs meant to contain arbitrary code?
Matthew Flaschen
Raphael Marichez wrote:
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
>
> Synopsis
> ========
>
> RPM is vulnerable to a buffer overflow and possibly the execution of
> arbitrary code when opening specially crafted packages.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 250 bytes
Desc: OpenPGP digital signature
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061113/da76842f/attachment.bin
Full-Disclosure is hosted and sponsored by Secunia.