oss-sec mailing list archives
CVE Request: Interger overflow vulnerability in ptp_unpack_EOS_CustomFuncEx function of libmtp (version 1.1.12 and below)
From: rudykewang(王永科) <rudykewang () tencent com>
Date: Thu, 6 Apr 2017 08:47:13 +0000
Hi, I find an interger overflow vulnerability in ptp-pack.c(ptp_unpack_EOS_CustomFuncEx function) of libmtp (version 1.1.12 and below) and have reported it to http://libmtp.sourceforge.net.<http://libmtp.sourceforge.net./> The fix is here: https://sourceforge.net/p/libmtp/mailman/message/35735992/ Could you assign a CVE number for this? This is Yongke Wang of Tencent's Xuanwu Lab (xlab.tencent.com).
Current thread:
- CVE Request: Interger overflow vulnerability in ptp_unpack_EOS_CustomFuncEx function of libmtp (version 1.1.12 and below) 王永科 (Apr 06)