[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: [oss-security] CVE request for libpng regression (CVE-2004-0421)
From: Vincent Danen <vdanen () redhat ! com>
Date: 2011-06-27 22:43:49
Message-ID: 20110627224349.GH1944 () redhat ! com
[Download RAW message or body]
It looks like CVE-2004-0421 was regressed upstream a few years ago and
was not noticed.
References:
http://sourceforge.net/mailarchive/forum.php?thread_name=BANLkTikrnU6FJNQYFvwmt78hwpgKPVRd1Q%40mail.gmail.com&forum_name=png-mng-implement
https://bugzilla.redhat.com/show_bug.cgi?id=717084
http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng;a=commitdiff;h=65e6d5a34f49acdb362a0625a706c6b914e670af
Could a CVE name be supplied? I don't know if upstream has requested
one independently or not.
--
Vincent Danen / Red Hat Security Response Team
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic