Flaw: OpenServer popper buffer overflow and denial-of-service

Caldera has warned the OpenServer /etc/popper will go into a loop if a character string of length 2048 or more is sent to it. If the bulldir variable in the user's config file is longer than 256 characters, popper will memory fault.

This flaw effects OpenServer 5.0.5 and OpenServer 5.0.6.

For more information on the flaw go to: http://stage.caldera.com/support/security/

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

More about Caldera

Show Comments