Openwall Project   /home  Owl  JtR  Pro  crypt  pam_passwdqc  tcb  phpass  scanlogd  popa3d  msulogin  /  Linux  BIND  /  advisories  presentations  /  services  donations  /  wordlists  passwords  /  NEWS  community  lists  Wiki  CVSweb  mirrors  signatures
bringing security into open environments
 
Password Recovery Resources on the Net
[<prev] [next>] [<thread-prev] [thread-next>] [month] [year] [list] 
Date: Thu, 31 Jul 2008 21:17:30 -0400
From: Josh Bressers <bressers@...hat.com>
To: oss-security@...ts.openwall.com,
        "Alexander Konovalenko" <alexkon@...il.com>
Subject: Re: SVG vulnerability affecting Firefox, evince, eog, Gimp?

On 1 August 2008, "Alexander Konovalenko" wrote:
> Does anybody know whether this [1] is a real vulnerability? I
> currently lack a spare machine to test it. If it is real, it probably
> deserves CVE number.
> 
> The SHA-256 sum of the .zip file there was
> 56d597cda98d796ec94723c540b967903886649412bce131eec4d232152aba3c
> when I fetched it.
> 

I can't get this to crash anything I've tried.  Has anyone else had any
luck?

Thanks for the heads up.  it's appreciated.

-- 
    JB

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ