oss-sec mailing list archives
Re: CVE request: procmail heap overflow in getlline()
From: "Joshua J. Drake" <oss-sec-pmgetbl () qoop org>
Date: Wed, 3 Dec 2014 17:30:57 -0600
Is it possible to trigger this issue with untrusted input or only trusted input from procmailrc? Joshua On Wed, Dec 03, 2014 at 11:31:20PM +0200, Henri Salo wrote:
Please assign 2014 CVE for procmail heap overflow in getlline() as described in following Debian BTS item <https://bugs.debian.org/771958> reported by Tero Marttila. Please comment if you need more information about the issue. --- Henri Salo
Attachment:
signature.asc
Description: Digital signature
Current thread:
- CVE request: procmail heap overflow in getlline() Henri Salo (Dec 03)
- Re: CVE request: procmail heap overflow in getlline() Joshua J. Drake (Dec 03)
- Re: CVE request: procmail heap overflow in getlline() Tero Marttila (Dec 03)
- Re: CVE request: procmail heap overflow in getlline() Santiago Vila (Dec 04)
- Re: CVE request: procmail heap overflow in getlline() Kurt Seifried (Dec 04)
- Re: CVE request: procmail heap overflow in getlline() Florian Weimer (Dec 04)
- Re: CVE request: procmail heap overflow in getlline() Martino Dell'Ambrogio (Dec 04)
- Re: CVE request: procmail heap overflow in getlline() Florian Weimer (Dec 04)
- Re: CVE request: procmail heap overflow in getlline() Martino Dell'Ambrogio (Dec 04)
- Re: CVE request: procmail heap overflow in getlline() Joshua J. Drake (Dec 03)