Date: Tue, 21 Jul 2015 22:01:57 -0500 From: Mark Felder <feld@FreeBSD.org> To: gnome@FreeBSD.org Cc: ports-secteam@FreeBSD.org Subject: Re: [oss-security] CVE Request: gdk-pixbuf heap overflow and DoS Message-ID: <1437534117.287904.329800545.710C703D@webmail.messagingengine.com> In-Reply-To: <CACn5sdSQDj84vErd9v73mEuvK32nkPhy7-KcLgSw4F_Q4RFqxQ@mail.gmail.com> References: <CACn5sdSQDj84vErd9v73mEuvK32nkPhy7-KcLgSw4F_Q4RFqxQ@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Jul 17, 2015, at 11:34, Gustavo Grieco wrote: > Hi, > > I would like to request a CVE for the heap overflow and DoS found in > several versions of gdk-pixbuf. It should be fixed: > > https://bugzilla.gnome.org/show_bug.cgi?id=752297 > > Thanks! Can someone check into this? This was reported to oss-sec mailing list. I think we are potentially vulnerable, but I'm not familiar enough with gdk-pixbuf know if updating it could have any consequences and creating a vuxml entry right now will prevent installing a lot of desktop software. Thanks!
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1437534117.287904.329800545.710C703D>