Comment Re:Is this fixed already? (Score 1) 160
My understanding is that there are TWO problems, one dated December 1, and one dated December 13.
From BUGTRAQ in a message by Iván Arce (http://www.core-sdi.com):
As noted in the advisories (
http://www.core-sdi.com/advisories/buffer%20over flow%20ing.htm
and http://www.cert.org/advisories/CA-99-15-RSAREF2.ht ml )
there are TWO buffer overflows. The first is in the SSH distributed file rsaglue.c the second is in the rsa.c file that is part of the RSAREF2 distribution.
From BUGTRAQ in a message by Iván Arce (http://www.core-sdi.com):
As noted in the advisories (
http://www.core-sdi.com/advisories/buffer%20ove
and http://www.cert.org/advisories/CA-99-15-RSAREF2.h
there are TWO buffer overflows. The first is in the SSH distributed file rsaglue.c the second is in the rsa.c file that is part of the RSAREF2 distribution.
