mailing list archives
Re: CVE request: libqt4: two memory issues
From: Tomas Hoger <thoger () redhat com>
Date: Thu, 25 Aug 2011 08:18:47 +0200
On Wed, 24 Aug 2011 15:49:17 -0400 (EDT) Josh Bressers wrote:
A) buffer overflow (looks only like an off-by-one from a very quick
Use CVE-2011-3193 for this.
I couldn't find this code in Harfbuzz-ng or pango. Has someone looked
into this further?
In both harfbuzz and pango git, history of the file ends with "Remove
old code!" removal:
Tomas Hoger / Red Hat Security Response Team