Top Layer Networks Information for VU#333628
OpenSSH contains buffer management errors
- Vendor Information Help Date Notified:
- Statement Date:
- Date Updated: 18 Sep 2003
This notification is to inform you that Top Layer products are not susceptible to the recently announce OpenSSH vulnerability (versions prior to 3.7.1) which appear to occur as a result of buffer management errors. Specifically, this is an issue with freeing the appropriate memory size on the heap, where in certain cases, the memory cleared is too large and might cause heap corruption.
More detailed information about this vulnerability can be found at:
The vendor has not provided us with any further information regarding this vulnerability.
The CERT/CC has no additional comments at this time.
If you have feedback, comments, or additional information about this vulnerability, please send us email.