[Secure-testing-team] Bug#805657: libmaxminddb: Missing bounds checking and verification of data type causes segfault
Salvatore Bonaccorso
carnil at debian.org
Fri Nov 20 19:30:22 UTC 2015
Source: libmaxminddb
Version: 1.0.4-2
Severity: important
Tags: security upstream patch fixed-upstream
Forwarded: https://github.com/maxmind/libmaxminddb/pull/98
Hi
See https://bugzilla.redhat.com/show_bug.cgi?id=1283919 for the report
in Red Hat. Upstream commit to address this issue is at
https://github.com/maxmind/libmaxminddb/commit/51255f113fe3c7b63ffe957636a7656a3ff9d1ff
Regards,
Salvatore
More information about the Secure-testing-team
mailing list