Security update for Novell XTier framework (important)

2011-10-25T23:09:04
ID SUSE-SU-2011:1185-1
Type suse
Reporter Suse
Modified 2011-10-25T23:09:04

Description

Several user supplied header length variables for the HTTP server component in the Novell XTier framework were not size limited, allowing integer overflow attacks to crash the service or potentially execute code. (CVE-2011-1710)