Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Thu, 23 Nov 2017 15:00:23 -0500
From: Antoine Beaupré <anarcat@...ngeseeds.org>
To: oss-security@...ts.openwall.com
Subject: Re: exiv2: multiple memory safety issues

On 2017-11-23 10:53:13, Raphael Hertzog wrote:
> So please file bugs on github, thank you.

I read this thread thinking this was still from June, so I thought I
would just go ahead and report this upstream already:

https://github.com/Exiv2/exiv2/issues/174

I should also mention that I haven't been able to reproduce with
valgrind, in Debian Wheezy, which uses exiv 0.23. I wasn't able to
compile exiv2 with ASAN there either, so that could be why I can't
reproduce.

A.

-- 
Le pouvoir n'est pas à conquérir, il est à détruire
                        - Jean-François Brient, de la servitude moderne

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.