On Mon, May 15, 2006 at 06:12:35PM -0500, Ethan Galstad wrote:
> Changelogs for both the 2.3.1 and 1.4.1 releases are included below.
>
> 2.3.1 - 05/15/2006
> ----------------
> * Bug fix for HTTP content_length header integer overflow in CGIs
>
>
> 1.4.1 - 05/15/2006
> ----------------
> * Bug fix for HTTP content_length header integer overflow in CGIs
Do those vulnerabilities have CVE numbers? If so, it would be great to
have them listed in the changelog. This will greatly ease the work of
security people in the distributions.
Greetings
Marc
--
-----------------------------------------------------------------------------
Marc Haber | "I don't trust Computers. They | Mailadresse im Header
Mannheim, Germany | lose things." Winona Ryder | Fon: *49 621 72739834
Nordisch by Nature | How to make an American Quilt | Fax: *49 621 72739835
This post was automatically imported from historical nagios-devel mailing list archives
Original poster: [email protected]