RE: [GNOME-my]iDEFENSE Security Advisory GNU Radius Remote Denial of Service Vulnerability

From: "Ow Mun Heng" <ow mun heng wdc com>
To: <gnome-my-list gnome org>
Subject: RE: [GNOME-my]iDEFENSE Security Advisory GNU Radius Remote Denial of Service Vulnerability
Date: Fri, 6 Feb 2004 09:50:31 +0800

> -----Original Message-----
> From: gnome-my-list-admin gnome org
> [mailto:gnome-my-list-admin gnome org]On Behalf Of
> jason unionswitch com my
>                                    IX. DISCLOSURE TIMELINE
> 
> December 8, 2003    Exploit acquired by iDEFENSE
> January 29, 2003    Initial notification sent
> January 29, 2003    iDEFENSE clients notified
> February 2, 2004    iDEFENSE Advisory posted to bug-gnu-radius gnu org
> February 2, 2004    Response received from Sergey Poznyakoff

Hi All,

	Question regarding the disclosure timeline. Note that the response 
time for the fix was only a few hours. (or less than that)

But What I'm curious was why Dec 8 to Jan 29 Timeframe for the bug to
surface?
What was iDEFENSE doing? Were they just researching the program or..???

Just curious..

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]