oss-sec mailing list archives

Re: CVE request: firefox: integer overflow

From: Daniel Veditz <dveditz () mozilla com>
Date: Wed, 26 Nov 2014 10:02:54 -0800

On 11/24/2014 6:19 AM, Vasyl Kaigorodov wrote:

And integer overflow was discovered in Firefox when processing a
crafted webm files [1].
Upstream commits are in [1] as well.

[1]: https://bugzilla.mozilla.org/show_bug.cgi?id=1090405

Can a CVE be assigned to this issue please?


Mozilla does not believe this is an exploitable security issue.

-Dan Veditz

Current thread:

CVE request: firefox: integer overflow Vasyl Kaigorodov (Nov 24)
- Re: CVE request: firefox: integer overflow Daniel Veditz (Nov 26)