Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date: Wed, 07 Aug 2013 11:17:19 -0600
From: Kurt Seifried <kseifried@...hat.com>
To: oss-security@...ts.openwall.com
CC: Florian <floriangaultier@...il.com>
Subject: Re: CVE Request - LibModPlug <=0.8.8.4 multiple heap
 overflow

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 08/07/2013 10:24 AM, Florian wrote:
> Hi,
> 
> Just a CVE Request for this 
> http://blog.scrt.ch/2013/07/24/vlc-abc-parsing-seems-to-be-a-ctf-challenge/
>
>  Thx
> 

I need a better request. You want one CVE? multiple CVEs? A quick read
of the web page indicates multiple different problems. Can you list
them here and provide links to the source code? thanks.

- -- 
Kurt Seifried Red Hat Security Response Team (SRT)
PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.13 (GNU/Linux)

iQIcBAEBAgAGBQJSAoEfAAoJEBYNRVNeJnmTmQ8P/iy7oMVpnHBMzb/ZrdxMxeFV
x4IyuPn4X7qqF5aJMY24BvN+4dgvsIOUDAr6rJFktyn3aPjk++Srt0oQucZVQ6Ut
rhu7uzaic2uLcY2e4bFsNHhTiTokOJEAqa7Es862jFwqAwJPU1FYpXDhEGlmENwM
MFS8TULxlt9ocpQUaYUhN08FbwD0WreOHl2ASXOey9kVjAq6IlZ3QWHXvCxnsfk6
YefKZ56kH5X80lDH/D4zqCMSk3F8gGV3IK5bZhwFSAtjkc/Nqs4lno6RZ4yspaJK
lb9UgKudistkGLguM/50Cq8Zm/WlEGHuZIcKyAy40e5fHThMWcNG8ZbmA99uXo8J
tZ8dWM6cDpWjQgiYPq2tphul1yH2nm8pdYGzpEg+J3Hd0A83hbeyENS2Y9oEujKC
A8ysBIvlDSe9HPDfwxhI+ga17KCex7zIsVXcvd57ltklwagZae8DMV92oXCQojfl
zTa2ffrtOTJQi1Vm0wbSB3tf9MuJCm99BjmdG1ZF31gJbuJYCO5NFpiGLPtprNvk
5p+itH4kCl1D7dhAEg/jnF3k0zzNGpmP9TrPj8XUdBcveMDKcRFA6DxUdqdL+LmJ
se4ciFbEhH1vr35SbHbqgdx4wVadenzU5AY4xiZKcXnYtGSmd/3kxpbFGrlyGgpW
fu0uPaHSrHpBfb6xwpeV
=LoaB
-----END PGP SIGNATURE-----

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.