Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Mon, 10 Nov 2008 09:47:50 -0500 (EST)
From: "Steven M. Christey" <>
cc: "Steven M. Christey" <>, Greg KH <>
Subject: Re: CVE requests: kernel: hfsplus-related bugs

On Mon, 10 Nov 2008, Eugene Teo wrote:

> > 1) hfsplus: fix Buffer overflow with a corrupted image
> > Upstream commit: efc7ffcb4237f8cb9938909041c4ed38f6e1bf40
> ...
> There's an equivalent bug for hfs. The upstream commit is d38b7aa. We
> will need a CVE name for this too.

Use CVE-2008-5025

Is the bug exactly equivalent?  Could you be more specific about existing
references?  "d38b7aa" doesn't look like a typical commit ID so the CVE is
currently marked as reserved.

- Steve

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.