oss-sec mailing list archives

CVE Request: pycrypto

From: Pinar Yanardag <pinar () pardus org tr>
Date: Sat, 07 Feb 2009 11:02:46 +0200

Hi,

There's a buffer overflow in pycrypto ARC2 module. Can you assign a CVE?

Test case: http://gitweb2.dlitz.net/?p=crypto/pycrypto-2.x.git;a=commitdiff;h=fd73731dfad451a81056fbb01e09aa78ab82eb5d
Patch: http://gitweb2.dlitz.net/?p=crypto/pycrypto-2.x.git;a=commitdiff;h=d1c4875e1f220652fe7ff8358f56dee3b2aba31b

Cheers,

--
Pinar Yanardag
http://pinguar.org
_____________________________

Pardus Security Team
http://security.pardus.org.tr

Current thread:

CVE Request: pycrypto Pinar Yanardag (Feb 07)
- Re: CVE Request: pycrypto Steven M. Christey (Feb 12)