'Re: [oss-security] CVE request for libpng regression'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] CVE request for libpng regression
From:       Josh Bressers <bressers () redhat ! com>
Date:       2011-06-28 20:36:04
Message-ID: 1516061416.999006.1309293364800.JavaMail.root () zmail01 ! collab ! prod ! int ! phx2 ! redhat ! com
[Download RAW message or body]

Please use CVE-2011-2501

Thanks.

-- 
    JB

----- Original Message -----
> It looks like CVE-2004-0421 was regressed upstream a few years ago and
> was not noticed.
> 
> References:
> http://sourceforge.net/mailarchive/forum.php?thread_name=BANLkTikrnU6FJNQYFvwmt78hwpgKPVRd1Q%40mail.gmail.com&forum_name=png-mng-implement
>  https://bugzilla.redhat.com/show_bug.cgi?id=717084
> http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng;a=commitdiff;h=65e6d5a34f49acdb362a0625a706c6b914e670af
>  
> Could a CVE name be supplied? I don't know if upstream has requested
> one independently or not.
> 
> --
> Vincent Danen / Red Hat Security Response Team


[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic