oss-sec mailing list archives
Re: Re: CVE request: More Evince overflows
From: Tomas Hoger <thoger () redhat com>
Date: Fri, 4 Mar 2011 17:13:47 +0100
On Fri, 18 Feb 2011 17:57:00 -0600 Raphael Geissert wrote:
On Friday 18 February 2011 08:41:08 Thomas Biege wrote:Has someone assigned a CVE-ID for this already?https://bugzilla.gnome.org/show_bug.cgi?id=640923Looks like everyone is just waiting for somebody else to assign an id, so let's just assign one: Please use CVE-2011-0433
There's an off-by-one in those fixes, as it's been pointed out to me. So if you've not fixed yet, you may want to look at: https://bugzilla.gnome.org/show_bug.cgi?id=643882 -- Tomas Hoger / Red Hat Security Response Team
Current thread:
- Re: CVE request: More Evince overflows Raphael Geissert (Feb 18)
- Re: Re: CVE request: More Evince overflows Tomas Hoger (Mar 04)