Date: Wed, 23 Jul 2014 14:04:22 +0200 From: Florian Weimer <fweimer@...hat.com> To: oss-security@...ts.openwall.com Subject: [CVE request] Array allocation fixes in libgfortran Janne Blomqvist fixed several CVE-2002-0391-style integer overflows in array allocation in libgfortran, the run-time support library for the Fortran compiler which is part of the GNU Compiler Collection. The upstream Subversion commit is here: <https://gcc.gnu.org/viewcvs/gcc?limit_changes=0&view=revision&revision=211721> These changes will be part of the next version of GCC (whose version number is still to be decided). I think this warrants a CVE assignment. -- Florian Weimer / Red Hat Product Security
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.