Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Thu, 11 Feb 2016 22:56:36 +0100
From: Gustavo Grieco <gustavo.grieco@...il.com>
To: oss-security@...ts.openwall.com
Subject: Re: use-after-free in tidy-html5

This issue was fixed. In case you are interested in the patch, it is here:

https://github.com/htacg/tidy-html5/pull/368

2016-01-25 14:57 GMT+01:00 Gustavo Grieco <gustavo.grieco@...il.com>:

> Hi,
>
> The tidy-html5 developers are still not sure how to fix this security
> issue. Any feedback is appreciated.
>
> Thanks!
>
> 2016-01-03 20:24 GMT-03:00 Gustavo Grieco <gustavo.grieco@...il.com>:
>
>> A use-after-free was discovered in tidy-html5 (5.1.25) using afl.
>> Technical details are available here:
>>
>> https://github.com/htacg/tidy-html5/issues/341
>>
>> Regards,
>> Gus
>>
>
>

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ