Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Fri, 03 Jan 2014 10:39:33 +0530
From: Huzaifa Sidhpurwala <huzaifas@...hat.com>
To: oss-security@...ts.openwall.com
Subject: Re: CVE for freerdp int overflow?

On 01/02/2014 08:01 PM, Raphael Geissert wrote:
> Hi,
> 
> Has a CVE id been assigned already for the following bug?
> https://bugzilla.redhat.com/show_bug.cgi?id=998941
> 

Hi,

No CVE has been assigned yet. The crash seems to be non-exploitable and
I am not really sure if only the client and/or server are affected.

If you have some spare bandwidth, feel free to investigate and let us
all know :)


-- 
Huzaifa Sidhpurwala / Red Hat Security Response Team

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.