Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Wed, 9 Nov 2016 18:01:51 -0800
From: Ian Zimmerman <>
Subject: Re: CVE Request: libtiff: heap buffer overflow/read outside of array

On 2016-11-09 17:32, Brian 'geeknik' Carpenter wrote:

> Fixed per
> >> 2016-11-10 Even Rouault <even.rouault at>

I tried to check out the sources to patch this for myself, following the
recipe from the webpage:

 [2+0]Downloads$ export
 [3+0]Downloads$ cvs login
Logging in to
CVS password: # use password "anonymous" 
cvs [login aborted]: connect to
2401 failed: Connection timed out

Is there another/better way?

Please *no* private Cc: on mailing lists and newsgroups
Personal signed mail: please _encrypt_ and sign
Don't clear-text sign:

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ