Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Fri, 03 Jan 2014 10:39:33 +0530
From: Huzaifa Sidhpurwala <huzaifas@...hat.com>
To: oss-security@...ts.openwall.com
Subject: Re: CVE for freerdp int overflow?

On 01/02/2014 08:01 PM, Raphael Geissert wrote:
> Hi,
> 
> Has a CVE id been assigned already for the following bug?
> https://bugzilla.redhat.com/show_bug.cgi?id=998941
> 

Hi,

No CVE has been assigned yet. The crash seems to be non-exploitable and
I am not really sure if only the client and/or server are affected.

If you have some spare bandwidth, feel free to investigate and let us
all know :)


-- 
Huzaifa Sidhpurwala / Red Hat Security Response Team

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ