oss-sec mailing list archives

CVE Request: mpfr (Buffer Overflow)

From: Pinar Yanardag <pinar () pardus org tr>
Date: Mon, 02 Mar 2009 15:15:48 +0200

Hi,

A buffer overflow vulnerability has been fixed in the latest version ofmpfr. From GNU mpfr changelog [1]:


--->8---

Changes from version 2.4.0 to version 2.4.1* Security fix in mpfr_snprintf and mpfr_vsnprintf (buffer overflow).


--->8---

[1]: http://www.mpfr.org/mpfr-2.4.1

Cheers,

--
Pinar Yanardag
http://pinguar.org
_________________________________________________________
Pardus Security Team
http://security.pardus.org.tr

Current thread:

CVE Request: mpfr (Buffer Overflow) Pinar Yanardag (Mar 02)