subject:"Bug#775003\: unace\: buffer overflow"

Bug#775003: unace: buffer overflow

2015-02-23 Thread Salvatore Bonaccorso

Control: retitle -1 unace: CVE-2015-2063: buffer overflow Hi, On Fri, Jan 09, 2015 at 10:59:54PM +0100, Jakub Wilk wrote: Package: unace Version: 1.2b-11 Usertags: afl unace crashes when trying to test integrity of the attached file: $ unace t crash UNACE v1.2public version

Bug#775003: unace: buffer overflow

2015-01-09 Thread Jakub Wilk

Package: unace Version: 1.2b-11 Usertags: afl unace crashes when trying to test integrity of the attached file: $ unace t crash UNACE v1.2public version Segmentation fault gdb says it's an integer overflow, followed by buffer overflow: (gdb) bt #0 __memcpy_sse2_unaligned () at