oss-sec mailing list archives
Re: heap overflow in procmail
From: Salvatore Bonaccorso <carnil () debian org>
Date: Wed, 11 Feb 2015 20:00:09 +0100
Hi, On Wed, Jan 21, 2015 at 03:15:04PM +0100, Jakub Wilk wrote:
* Tavis Ormandy <taviso () google com>, 2014-09-03, 11:52:I noticed a heap overflow in procmail when parsing addresses with unbalanced quotes.Unfortunately, there's more: https://bugs.debian.org/769937
For this an Darmochwal provided a patch to the Debian bugtracker: https://bugs.debian.org/cgi-bin/bugreport.cgi?msg=11;filename=formail.patch;att=1;bug=769937 Regards, Salvatore
Current thread:
- Re: heap overflow in procmail Jakub Wilk (Jan 21)
- Re: heap overflow in procmail cve-assign (Jan 22)
- Re: heap overflow in procmail Jakub Wilk (Feb 12)
- Re: heap overflow in procmail Salvatore Bonaccorso (Feb 22)
- Re: heap overflow in procmail Jakub Wilk (Feb 12)
- Re: heap overflow in procmail Salvatore Bonaccorso (Feb 11)
- Re: heap overflow in procmail cve-assign (Jan 22)