Products Openwall GNU/*/Linux   server OS John the Ripper   password cracker Free & Open Source for any platform Pro for Linux (RPM package) Pro for Mac OS X (dmg package) Wordlists   for password cracking passwdqc   policy enforcement phpass   password hashing in PHP crypt_blowfish   ditto in C/C++ tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login Linux kernel security hardening Services Publications Articles Presentations Community Mailing lists Community wiki Donations Resources Source code repository (CVSweb) File archive & mirrors How to verify digital signatures Password recovery resources Recommended books What's new

Date: Wed, 5 Aug 2009 08:30:54 -0600
From: Vincent Danen <vdanen@...hat.com>
To: oss-security@...ts.openwall.com
Cc: coley@...re.org
Subject: Re: CVE request: XEmacs Multiple Integer Overflows

* [2009-08-05 13:53:50 +0200] Thomas Biege wrote:

>Hello,
>was a CVE-ID allocated for this issue in the meanwhile?

I don't believe so.  We've not seen one, at any rate.

>On Thu, Jul 16, 2009 at 09:25:41AM +0200, Alex Legler wrote:
>> Hi,
>> 
>> I don't think we have a CVE for this/these issue(s) yet, so please
>> assign one/some:
>> 
>> The {tiff,png,jpeg}_instantiate() functions in glyphs-eimage.c contain
>> an integer overflow, possibly leading to a heap-based buffer overflow.
>> 
>> References:
>> Filed upstream as: http://tracker.xemacs.org/XEmacs/its/issue534
>> 
>> http://secunia.com/advisories/35348
>> http://www.vupen.com/english/advisories/2009/1666
>> https://bugs.gentoo.org/show_bug.cgi?id=275397
>> https://bugzilla.redhat.com/show_bug.cgi?id=511994

-- 
Vincent Danen / Red Hat Security Response Team 

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ