[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 126-1] ettercap security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : ettercap
Version        : 1:0.7.3-2.1+squeeze2
CVE ID         : CVE-2014-9380 CVE-2014-9381
Debian Bug     : 773416

Patches a bunch of security vulnerabilities:
  - CVE-2014-9380 (Buffer over-read)
  - CVE-2014-9381 (Signedness error)
  See: https://www.obrela.com/home/security-labs/advisories/osi-advisory-osi-1402/
    Patches taken from upstream
     - 6b196e011fa456499ed4650a360961a2f1323818 pull/608
     - 31b937298c8067e6b0c3217c95edceb983dfc4a2 pull/609
   Thanks to Nick Sampanis <n.sampanis@obrela.com> who is responsible for
   both finding and repairing these issues.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=9X3E
-----END PGP SIGNATURE-----


Reply to: