[bugs] [illumos gate - Bug #1102] Resource exhaustion in sftp client
illumos bugs
bugs at lists.illumos.org
Thu Jul 21 05:53:32 PDT 2011
Issue #1102 has been updated by Gary Mills.
I've submitted an RTI for this bug.
So far, nobody has offered to integrate it.
----------------------------------------
Bug #1102: Resource exhaustion in sftp client
https://www.illumos.org/issues/1102
Author: Gary Mills
Status: New
Priority: Normal
Assignee: Gary Mills
Category:
Target version:
Difficulty: Medium
Tags: needs-triage
CVE-2010-4755 refers to a resource exhaustion vulnerability in the BSD glob library.
This code is not part of the Illumos/Solaris glob library, but is part of a private library
used by the sftp client. Note that this is not a security issue because it's only on the
client side.
It has been corrected in BSD variants by enhancing the function of the GLOB_LIMIT
flag option.
--
You have received this notification because you have either subscribed to it, or are involved in it.
To change your notification preferences, please click here: http://www.illumos.org/my/account
More information about the bugs
mailing list