Date: Wed, 23 Jul 2014 14:04:22 +0200 From: Florian Weimer <fweimer@...hat.com> To: oss-security@...ts.openwall.com Subject: [CVE request] Array allocation fixes in libgfortran Janne Blomqvist fixed several CVE-2002-0391-style integer overflows in array allocation in libgfortran, the run-time support library for the Fortran compiler which is part of the GNU Compiler Collection. The upstream Subversion commit is here: <https://gcc.gnu.org/viewcvs/gcc?limit_changes=0&view=revision&revision=211721> These changes will be part of the next version of GCC (whose version number is still to be decided). I think this warrants a CVE assignment. -- Florian Weimer / Red Hat Product Security
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ