oss-sec mailing list archives

Re: CVE request: libarchive: Out of bounds read using malformed cpio archive

From: Hanno Böck <hanno () hboeck de>
Date: Mon, 4 May 2015 07:41:38 +0200

On Mon, 4 May 2015 07:35:51 +0200
Salvatore Bonaccorso <carnil () debian org> wrote:

Could a CVE be assigned for the following issue in libarchive:


I've lately reported ~15 different memory access issues in libarchive.
Not sure, do you want to assign CVEs for all of them?

Wanted to wait till everything is fixed and make a big announcement
then, but given that this seems to take longer than expected I don't
know...

-- 
Hanno Böck
http://hboeck.de/

mail/jabber: hanno () hboeck de
GPG: BBB51E42

Attachment: _bin
Description: OpenPGP digital signature

Current thread:

CVE request: libarchive: Out of bounds read using malformed cpio archive Salvatore Bonaccorso (May 03)
- Re: CVE request: libarchive: Out of bounds read using malformed cpio archive Hanno Böck (May 03)