oss-sec mailing list archives
Re: Re: CVE Request: Graphviz format string vuln
From: Joshua Rogers <oss () internot info>
Date: Wed, 10 Dec 2014 02:01:08 +1100
Just for reference, this was found by me, using afl-fuzz. Thanks, On 02/12/14 05:04, Steven M. Christey wrote:
On Sun, 30 Nov 2014, Joshua Rogers wrote:On 25/11/14 16:40, Joshua Rogers wrote:Hi, A format string vulnerability has been found in `graphviz'. The fix commit is here: https://github.com/ellson/graphviz/commit/99eda421f7ddc27b14e4ac1d2126e5fe41719081 Could I get a CVE-ID for this?Use CVE-2014-9157. - Steve
-- -- Joshua Rogers <https://internot.info/>
Current thread:
- CVE Request: Graphviz format string vuln Joshua Rogers (Nov 24)
- Re: CVE Request: Graphviz format string vuln Joshua Rogers (Nov 30)
- Re: Re: CVE Request: Graphviz format string vuln Steven M. Christey (Dec 01)
- Re: Re: CVE Request: Graphviz format string vuln Joshua Rogers (Dec 09)
- Re: Re: CVE Request: Graphviz format string vuln Steven M. Christey (Dec 01)
- Re: CVE Request: Graphviz format string vuln Vit Ry (Dec 01)
- Re: CVE Request: Graphviz format string vuln Joshua Rogers (Nov 30)