[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] CVE id request: faad2
From:       Steffen Joeris <steffen.joeris () skolelinux ! de>
Date:       2008-09-26 13:26:02
Message-ID: 200809262326.03434.steffen.joeris () skolelinux ! de
[Download RAW message or body]


On Fri, 26 Sep 2008 10:49:55 pm Josh Bressers wrote:
> ----- "Steffen Joeris" <steffen.joeris@skolelinux.de> wrote:
> > Hi
> >
> > There is a heap overflow in faad2.
> > Upstream announcement:
> > http://www.audiocoding.com/
> >
> > Gentoo Bugreport:
> > http://bugs.gentoo.org/show_bug.cgi?id=238445
> >
> > Debian Bugreport:
> > http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=499899
> >
> > Upstream patch:
> > http://www.audiocoding.com/patch/main_overflow.diff
> >
> > Could I please get a CVE id for this?
>
> This has already been assigned CVE-2008-4201
> http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4201
>
> It's not live on the MITRE site yet though.
Grrr damn typo and I had a personal note that a CVE id was requested, just 
didn't find it in my inbox when searching for faud2 :/ 
Thanks for pointing it out and sorry for the noise.

Cheers
Steffen

["signature.asc" (application/pgp-signature)]

[prev in list] [next in list] [prev in thread] [next in thread]