subject:"Bug#787644\: libwmf\: CVE\-2015\-0848\: heap overflow when decoding BMP images"

Re: Bug#787644: libwmf: CVE-2015-0848: heap overflow when decoding BMP images

2015-06-19 Thread Moritz Mühlenhoff

On Fri, Jun 19, 2015 at 02:07:10PM +0200, Guido Günther wrote: Hi, On Tue, Jun 16, 2015 at 06:26:31AM +0200, Salvatore Bonaccorso wrote: Hi, A second CVE was assigned for a further issue: http://www.openwall.com/lists/oss-security/2015/06/16/4 (CVE-2015-4588). Attached debdiff

Re: Bug#787644: libwmf: CVE-2015-0848: heap overflow when decoding BMP images

2015-06-19 Thread Guido Günther

Hi, On Tue, Jun 16, 2015 at 06:26:31AM +0200, Salvatore Bonaccorso wrote: Hi, A second CVE was assigned for a further issue: http://www.openwall.com/lists/oss-security/2015/06/16/4 (CVE-2015-4588). Attached debdiff fixes the two CVEs on squeeze-lts. Since sid,jessie and wheezy ship