oss-sec mailing list archives
CVE request: gnash integer overflow
From: Vincent Danen <vdanen () redhat com>
Date: Wed, 14 Mar 2012 11:54:21 -0600
An integer overflow leading to a heap-based buffer overflow was found and fixed in Gnash. Could a CVE be assigned to this flaw? References: http://git.savannah.gnu.org/cgit/gnash.git/commit/?id=bb4dc77eecb6ed1b967e3ecbce3dac6c5e6f1527 http://secunia.com/advisories/47183 https://bugzilla.redhat.com/show_bug.cgi?id=803443 --Vincent Danen / Red Hat Security Response Team
Current thread:
- CVE request: gnash integer overflow Vincent Danen (Mar 14)
- Re: CVE request: gnash integer overflow Kurt Seifried (Mar 14)