|
Message-ID: <452d9ee52081437e940914230d7641db@imshyb01.MITRE.ORG> Date: Thu, 2 Feb 2017 01:07:10 -0500 From: <cve-assign@...re.org> To: <ago@...too.org> CC: <cve-assign@...re.org>, <oss-security@...ts.openwall.com> Subject: Re: podofo: signed integer overflow in PdfParser.cpp -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 > https://blogs.gentoo.org/ago/2017/02/01/podofo-signed-integer-overflow-in-pdfparser-cpp > base/PdfParser.cpp:757:23 > signed integer overflow: 9223372036854775807 + 9 cannot be represented in type 'long' Use CVE-2017-5853. - -- CVE Assignment Team M/S M300, 202 Burlington Road, Bedford, MA 01730 USA [ A PGP key is available for encrypted communications at http://cve.mitre.org/cve/request_id.html ] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJYksccAAoJEHb/MwWLVhi2KtcP/RPXFhE/48/qEcYDPurBglJ1 lr8iO0O4kxomYc824syNx3W9DiVPTCl1b/V9w8kmKcYv5ST/Jau+jK8L/Ru1shCA munHxDPKJ6aLtbITZClfw8Xaxm4aN+Kw31ymk8p07SDsxnleRtIrD2ycikFuRfE4 6m9grxkGSSCuom2LKeYQxdvc12WkyXYUXCrPw9j/psGv9qPcVJFbg/HGXRqPlyCX b8b4yPj44/e6aIEm+xlIArAdHv13SHm9Y5yD48VKDYsHuN4a29l23MW3C2iUUTpX vkW/TVfGY+/posT4UZBaRo79O4Yg7sjwQlWgCA94oyzFdWycQ2jWuBul8dlFsYBv oxzJdeohLdzsXnYMHaStfF8V4a1co1sFbrAWsqvpV7ZVaXqqYx6WfWHTRIVjkjZF xEW/7y1SSxnX3hHZHO79931OD9IserWTjQdCTXvkI2+ZW5vEJRdn6WLkN8kqeypS a+75z5vr+CkY3ilYDiTI4dSq2KHfWrXZkkSHdZd1FQWjlZNElOLQOSAnDEk0zCxr sZbkKu0Ik6eS27HsOpqhrobYqujxPiXUwh+MG/7m7zEEOCnL9dbFw7BPOpXKFf7s q5AG9gW9J+Y/iSJJ2FHTnkxUp6nbNklYSqrqqYsTL801Ae5l3d0KaCp4UqLhKqhD AObpfPPx/2QbA1pZXYIG =cD7a -----END PGP SIGNATURE-----
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.