Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Tue, 9 Oct 2012 21:29:07 +0200
From: Jérôme Benoit <jerome.benoit@...nouille.com>
To: oss-security@...ts.openwall.com, henri@...v.fi
Subject: CVE Request -- claws-mail -- NULL pointer derefence while
 processing email content.

Hello, 

  A NULL pointer dereference flaw was found in the format agnostic
  email content processing code in claws-mail, an email client (or
  MUA) based on GTK+. 

References: 

[1] https://bugzilla.redhat.com/show_bug.cgi?id=862578
[2]
http://www.thewildbeast.co.uk/claws-mail/bugzilla/show_bug.cgi?id=2743 

Could you allocate a CVE id for this?

Cheers.  

-- 
Jérôme Benoit aka fraggle
La Météo du Net - http://grenouille.com
OpenPGP Key ID : 9FE9161D
Key fingerprint : 9CA4 0249 AF57 A35B 34B3 AC15 FAA0 CB50 9FE9 161D

Download attachment "signature.asc" of type "application/pgp-signature" (199 bytes)

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.