Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Mon, 22 Aug 2016 22:10:06 -0400 (EDT)
From: cve-assign@...re.org
To: carnil@...ian.org
Cc: cve-assign@...re.org, oss-security@...ts.openwall.com
Subject: Re: CVE Request: libgd: Out-Of-Bounds Read in function read_image_tga of gd_tga.c

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

> https://github.com/libgd/libgd/issues/248
> https://github.com/libgd/libgd/pull/251

> https://github.com/libgd/libgd/commit/3c2b605d72e8b080dace1d98a6e50b46c1d12186
> https://github.com/libgd/libgd/commit/01c61f8ab110a77ae64b5ca67c244c728c506f03

> not a duplicate of issue #247

Use CVE-2016-6905.

- -- 
CVE Assignment Team
M/S M300, 202 Burlington Road, Bedford, MA 01730 USA
[ A PGP key is available for encrypted communications at
  http://cve.mitre.org/cve/request_id.html ]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=0tY/
-----END PGP SIGNATURE-----

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.