Re: [OE-core] [dizzy][PATCH 3/4] glibc: CVE-2015-9761

Martin, On 03/11/2016 05:58 AM, Martin Jansa wrote: > On Thu, Mar 03, 2016 at 09:47:11PM +0100, Martin Jansa wrote: >> I was asking you about the CVE number (but I realize it was already merged >> in other branches with wrong number so maybe it will be less confusing use >> the same in Dizzy)

Re: [OE-core] [dizzy][PATCH 3/4] glibc: CVE-2015-9761

On Fri, Mar 11, 2016 at 02:58:57PM +0100, Martin Jansa wrote: > On Thu, Mar 03, 2016 at 09:47:11PM +0100, Martin Jansa wrote: > > I was asking you about the CVE number (but I realize it was already merged > > in other branches with wrong number so maybe it will be less confusing use > > the same

Re: [OE-core] [dizzy][PATCH 3/4] glibc: CVE-2015-9761

On Thu, Mar 03, 2016 at 09:47:11PM +0100, Martin Jansa wrote: > I was asking you about the CVE number (but I realize it was already merged > in other branches with wrong number so maybe it will be less confusing use > the same in Dizzy) > > And "please merge" was informal > Acked-by: Martin Jansa

Re: [OE-core] [dizzy][PATCH 3/4] glibc: CVE-2015-9761

On Sun, Feb 28, 2016 at 10:53:34AM -0800, Armin Kuster wrote: > From: Armin Kuster I think this is 2014-9761 not 2015-9761 But other than that please merge this series. > A stack overflow vulnerability was found in nan* functions that could cause > applications which

[OE-core] [dizzy][PATCH 3/4] glibc: CVE-2015-9761

From: Armin Kuster A stack overflow vulnerability was found in nan* functions that could cause applications which process long strings with the nan function to crash or, potentially, execute arbitrary code. (From OE-Core rev: fd3da8178c8c06b549dbc19ecec40e98ab934d49)