Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 284449 (CVE-2008-7191)

Summary: <net-proxy/polipo-1.0.4 overly long URL DoS (CVE-2008-7191)
Product: Gentoo Security Reporter: Alex Legler (RETIRED) <a3li>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: minor CC: net-proxy+disabled
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: http://www.pps.jussieu.fr/~jch/software/polipo/CHANGES.text
Whiteboard: B3 [noglsa]
Package list:
Runtime testing required: ---

Description Alex Legler (RETIRED) archtester gentoo-dev Security 2009-09-10 09:37:30 UTC 
CVE-2008-7191 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-7191):
  Unspecified vulnerability in Polipo before 1.0.4 allows remote
  attackers to cause a denial of service (crash) via a long request URL.
Comment 1 Alin Năstac (RETIRED) gentoo-dev 2009-09-12 04:51:55 UTC 
Arches, please stabilize net-proxy/polipo-1.0.4.
Comment 2 Christian Faulhammer (RETIRED) gentoo-dev 2009-09-12 10:34:18 UTC 
x86 stable
Comment 3 Markus Meier gentoo-dev 2009-09-13 14:42:29 UTC 
amd64 stable, all arches done.
Comment 4 Stefan Behte (RETIRED) gentoo-dev Security 2009-11-06 15:24:58 UTC 
Ready to vote, I vote NO.
Comment 5 Alex Legler (RETIRED) archtester gentoo-dev Security 2009-11-06 15:28:04 UTC 
NO. Closing