Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Date: Thu, 2 Feb 2017 01:08:48 -0500
From: <cve-assign@...re.org>
To: <ago@...too.org>
CC: <cve-assign@...re.org>, <oss-security@...ts.openwall.com>
Subject: Re: podofo: NULL pointer dereference in PdfOutputStream.cpp

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

> https://blogs.gentoo.org/ago/2017/02/01/podofo-null-pointer-dereference-in-pdfoutputstream-cpp
> base/PdfOutputStream.cpp:116:33
> null pointer passed as argument 2, which is declared to never be null

Use CVE-2017-5854.

- -- 
CVE Assignment Team
M/S M300, 202 Burlington Road, Bedford, MA 01730 USA
[ A PGP key is available for encrypted communications at
  http://cve.mitre.org/cve/request_id.html ]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=DC0Z
-----END PGP SIGNATURE-----

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.