Home page logo

oss-sec logo oss-sec mailing list archives

Re: CVE request: libqt4: two memory issues
From: Tomas Hoger <thoger () redhat com>
Date: Thu, 25 Aug 2011 08:18:47 +0200

On Wed, 24 Aug 2011 15:49:17 -0400 (EDT) Josh Bressers wrote:

A) buffer overflow (looks only like an off-by-one from a very quick

Use CVE-2011-3193 for this.

I couldn't find this code in Harfbuzz-ng or pango. Has someone looked
into this further?

In both harfbuzz and pango git, history of the file ends with "Remove
old code!" removal:


Tomas Hoger / Red Hat Security Response Team

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]