oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Re: CVE request: More Evince overflows

From: Tomas Hoger <thoger () redhat com>
Date: Fri, 4 Mar 2011 17:13:47 +0100
On Fri, 18 Feb 2011 17:57:00 -0600 Raphael Geissert wrote:


On Friday 18 February 2011 08:41:08 Thomas Biege wrote:

Has someone assigned a CVE-ID for this already?

https://bugzilla.gnome.org/show_bug.cgi?id=640923


Looks like everyone is just waiting for somebody else to assign an id, so 
let's just assign one:

Please use CVE-2011-0433


There's an off-by-one in those fixes, as it's been pointed out to me.
So if you've not fixed yet, you may want to look at:
  https://bugzilla.gnome.org/show_bug.cgi?id=643882

-- 
Tomas Hoger / Red Hat Security Response Team
Previous By Date Next
Previous By Thread Next

Current thread: