Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Thu, 26 Feb 2015 12:08:25 -0600
From: Brian Carpenter <brian.carpenter@...il.com>
To: oss-security@...ts.openwall.com
Subject: CVE Request: null ptr deref in lame v3.99.5

Bug reports:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777160
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777161

Fixed by Debian patch here:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775959

Tracker:
https://tracker.debian.org/news/672916

Issue appears to be fixed in the Debian repos and in the upstream source,
however, no upstream release has been made yet (3.99.5 is still available
for download on Sourceforge).

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ