CVE-2019-8981 (https://nvd.nist.gov/vuln/detail/CVE-2019-8981): tls1.c in Cameron Hamilton-Rich axTLS before 2.1.5 has a Buffer Overflow via a crafted sequence of TLS packets because the need_bytes value is mismanaged.
*** Bug 717810 has been marked as a duplicate of this bug. ***
We need to stabilize 2.1.5. KEYWORDS="amd64 arm ppc ppc64 x86"
amd64 stable
arm stable
x86 stable
ppc stable
ppc64 stable. Maintainer(s), please cleanup. Security, please add it to the existing request, or file a new one.
Resetting sanity check; keywords are not fully specified and arches are not CC-ed.
(In reply to Agostino Sarubbo from comment #7) > ppc64 stable. > > Maintainer(s), please cleanup. > Security, please add it to the existing request, or file a new one. cleanup done
Thanks!
DoS. No PoC for ACE/RCE.