| lists.openwall.net | lists / announce john-users owl-users popa3d-users / xvendor oss-security / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 | |
|
Open Source and information security mailing list archives
| ||
|
Date: 4 Oct 2007 15:03:40 -0000 From: ejc@...usandplaces.org To: bugtraq@...urityfocus.com Subject: Re: OpenSSL SSL_get_shared_ciphers() off-by-one buffer overflow Just to clarify, is 0.9.8e vulnerable? It contains the same code, but is there something else which mitigates this? Eric