[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

[Bug 509531] CVE-2009-2295 ocaml-camlimages: PNG reader multiple integer overflows (oCERT-2009-009)



Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug.


https://bugzilla.redhat.com/show_bug.cgi?id=509531


Vincent Danen <vdanen redhat com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |vdanen redhat com




--- Comment #15 from Vincent Danen <vdanen redhat com>  2009-07-27 12:01:52 EDT ---
Robert @ Gentoo reported that upstream fixed similar integer overflows in
gifread.c and jpegread.c for values that are used in memory allocations and
memcpy():

A stripped down [by Alexis Ballier] version of the patch is in Gentoo's BZ:
https://bugs.gentoo.org/show_bug.cgi?id=276235
https://bugs.gentoo.org/attachment.cgi?id=199108

-- 
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]