Re: Cve issue discussion

[Jesse Hertz <jesse_hertz () apple com>]

If a non-ASAN build under valgrind caused it to consume a lot of memory, then its a legitimate issue, report it to 
libpng.
> On Aug 9, 2017, at 8:18 AM, Glenn Randers-Pehrson <glennrp () gmail com> wrote:
>
> On Wed, Aug 9, 2017 at 3:49 AM, ne xo <nexo123 () outlook kr> wrote:
> > Most bugs in ASan do not cause crash in non-ASan environments.
> >
> > You should check with the valgrind tool.
>
> That's what I do.
>
> Valgrind exhibited the large memory request but did it quickly.

Attachment: signature.asc
Description: Message signed with OpenPGP