Date: Sun, 8 Jan 2017 09:45:01 +0100 From: Salvatore Bonaccorso <carnil@...ian.org> To: OSS Security Mailinglist <oss-security@...ts.openwall.com> Subject: CVE Request: icoutils: exploitable crash in wrestool programm Hi Choongwoo Han reported an exploitable crash in wrestool from the icoutils. The command line tools is e.g. used in KDE's metadataparsing, c.f. . A patch is available in the Debian packaging. Could you please assign a CVE for this issue? Regards, Salvatore  https://bugs.debian.org/850017  http://www.nongnu.org/icoutils/  https://codesearch.debian.net/search?q=wrestool&perpkg=1  https://anonscm.debian.org/git/users/cjwatson/icoutils.git/plain/debian/patches/check-offset-overflow.patch
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ