For completeness, I'm attaching here (so that it's also stored in our
BTS) the test file from the original report in decrypted and
uncompressed from. To reproduce:
unshar heap-buffer-overflow.bin
Thanks.
heap-buffer-overflow.bin
Description: Binary data
Hi Santiago, hi Moritz,
On Mon, Mar 19, 2018 at 06:20:44PM +0100, Santiago Vila wrote:
> On Mon, Mar 19, 2018 at 05:58:04PM +0100, Moritz Muehlenhoff wrote:
> > Source: sharutils
> > Severity: grave
> > Tags: security
> >
> > This has been assigned CVE-2018-197:
> >
On Mon, Mar 19, 2018 at 06:20:44PM +0100, Santiago Vila wrote:
> On Mon, Mar 19, 2018 at 05:58:04PM +0100, Moritz Muehlenhoff wrote:
> > Source: sharutils
> > Severity: grave
> > Tags: security
> >
> > This has been assigned CVE-2018-197:
> >
On Mon, Mar 19, 2018 at 05:58:04PM +0100, Moritz Muehlenhoff wrote:
> Source: sharutils
> Severity: grave
> Tags: security
>
> This has been assigned CVE-2018-197:
> http://lists.gnu.org/archive/html/bug-gnu-utils/2018-02/msg4.html
>
> Proposed patch at:
>
Source: sharutils
Severity: grave
Tags: security
This has been assigned CVE-2018-197:
http://lists.gnu.org/archive/html/bug-gnu-utils/2018-02/msg4.html
Proposed patch at:
http://lists.gnu.org/archive/html/bug-gnu-utils/2018-02/msg5.html
Cheers,
Moritz
5 matches
Mail list logo
