Subject | Re: [firebird-support] Vulnerability |
---|---|
Author | Lester Caine |
Post date | 2016-09-27T18:24:32Z |
On 27/09/16 19:01, Carlos Mazariegos carlosemazariegosa@...
[firebird-support] wrote:
http://www.h-online.com/security/news/item/Buffer-overflow-vulnerability-in-Firebird-database-733053.html
was cleared in early versions of Firebird 2.0
An other overflow was cleared in 2.1 and back ported to 2.0.4
http://www.h-online.com/security/news/item/Vulnerability-in-Firebird-database-735909.html
But this is all several years out of data. I don't know of any CURRENT
vulnerability still awaiting fixing in the ode base.
--
Lester Caine - G8HFL
-----------------------------
Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk
[firebird-support] wrote:
> The vulnerability that reported Palo Alto is:Which has nothing to do with Firebird and it's CURRENT code base!
>
>
> * *Unique Threat Id:* 31633
> * *Descriptión:* Ther exists a buffer overflow vulnerability in
> Borland Interbase server.
http://www.h-online.com/security/news/item/Buffer-overflow-vulnerability-in-Firebird-database-733053.html
was cleared in early versions of Firebird 2.0
An other overflow was cleared in 2.1 and back ported to 2.0.4
http://www.h-online.com/security/news/item/Vulnerability-in-Firebird-database-735909.html
But this is all several years out of data. I don't know of any CURRENT
vulnerability still awaiting fixing in the ode base.
--
Lester Caine - G8HFL
-----------------------------
Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk