[zeromq-dev] Security issues in 0MQ (XML parser)

Pieter Hintjens ph at imatix.com
Tue Jun 1 10:45:23 CEST 2010


OK, I'll get you a list of the 0MQ core issues.  Nothing serious there
as far as I can tell.

-Pieter


On Tue, Jun 1, 2010 at 10:26 AM, Martin Sustrik <sustrik at 250bpm.com> wrote:
> Pieter Hintjens wrote:
>> Martin,
>>
>> Douglas Held of Fortify did a scan of the source and found about 150
>> potential issues, most of them in the XML parser.  There are some
>> fairly serious ones there (leaks, buffer exploits).  I'll send you
>> patches, but perhaps it's worth contacting the author to see if he has
>> an updated version.
>
> Great!
>
> Can I have a look at 0MQ core issues?
>
> Martin
>
> _______________________________________________
> zeromq-dev mailing list
> zeromq-dev at lists.zeromq.org
> http://lists.zeromq.org/mailman/listinfo/zeromq-dev
>
>



More information about the zeromq-dev mailing list