Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Sat, 15 Oct 2016 22:54:07 -0400 (EDT)
From: cve-assign@...re.org
To: ago@...too.org
Cc: cve-assign@...re.org, oss-security@...ts.openwall.com
Subject: Re: graphicsmagick: memory allocation failure in ReadPCXImage (pcx.c)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

> https://blogs.gentoo.org/ago/2016/09/15/graphicsmagick-memory-allocation-failure-in-readpcximage-pcx-c/
> 
> AddressSanitizer failed to allocate 0x4cd6a6000 bytes of LargeMmapAllocator
> 0x7ff8e887beba in ReadPCXImage ... GraphicsMagick-1.3.25/coders/pcx.c:467:16
> 
> http://hg.code.sf.net/p/graphicsmagick/code/rev/b9edafd479b9

Use CVE-2016-8683.

- -- 
CVE Assignment Team
M/S M300, 202 Burlington Road, Bedford, MA 01730 USA
[ A PGP key is available for encrypted communications at
  http://cve.mitre.org/cve/request_id.html ]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=HEJV
-----END PGP SIGNATURE-----

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ