OpenSLP / Bugs / #152 [Security] Null pointer deref could lead to possible DoS

#152 [Security] Null pointer deref could lead to possible DoS

Milestone: v2.1

Status: closed

Owner: John Calcote

Labels: None

Priority: 5

Updated: 2017-04-07

Created: 2016-05-19

Creator: Huzaifa Sidhpurwala

Private: No

Hi,

http://www.openslp.org/doc/html/UsersGuide/Security.html mentions i should contact jcalcote@novell.com if i have any security related bugs, but it seems the this email address no longer exists. Also the issue below is already public.

Details available at:
http://seclists.org/oss-sec/2016/q2/361

Discussion

John Calcote - 2017-04-07

status: open --> accepted

assigned_to: John Calcote

Group: --> v2.1
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

John Calcote - 2017-04-07

Huzaifa,

Thank you for the information regarding this security vulnerability. Please note that I've fixed the Security.html doc on the OpenSLP website to refer to my actual email address.

John

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

John Calcote - 2017-04-07

Huzaifa,

I've fixed this issue in commit 1781 in the openslp mercurial repository. I've also commented on the redhat bugzilla ticket.

Regards,
John

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

John Calcote - 2017-04-07

status: accepted --> closed
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

John Calcote - 2017-04-07

NOTE: This is a fix to DEBUG-ONLY code and would never have been an issue in release/production code.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

[Security] Null pointer deref could lead to possible DoS

Group

Searches

Help

#152 [Security] Null pointer deref could lead to possible DoS

Discussion