On Wed, May 31, 2017 at 08:48:20AM +0200, Peter Bex wrote: > Hi all, > > We just fixed a potential security issue in the standard Scheme length > procedure. When length is called on an improper list, the underlying > C function C_i_list incorrectly checks the head of the _input_ list > for being a pair rather than the head of the part currently being > traversed.
This issue has been assigned CVE-2017-9334. Note that this issue affects all releases, up to and including 4.12. Regards, The CHICKEN Team
signature.asc
Description: Digital signature
_______________________________________________ Chicken-users mailing list [email protected] https://lists.nongnu.org/mailman/listinfo/chicken-users
