On Wed, 2018-08-01 at 00:51 +0200, Antonio Diaz Diaz wrote: > Stephen Kitt wrote: > > Please accept my apologies, I didn’t mean to mischaracterise your work or > > your emails, and I do appreciate all your efforts in this matter. > > I'm sorry I didn't fix it sooner. But I'm happy that I have managed to > assemble a worst-case test file only 8192 bytes long and have added it > to the testsuite, so this bug should never happen again. Thanks again > for your help. > > You can find the fixed version at > http://download-mirror.savannah.gnu.org/releases/zutils/zutils-1.8-pre2.tar.lz > > The relevant entry in NEWS: > "A buffer overrun has been fixed in zcat which happened sometimes when > the '-v, --show-nonprinting' option was used (or indirectly enabled)."
Thanks, Antonio. Will you request a CVE ID for this? Ben. -- Ben Hutchings If you seem to know what you are doing, you'll be given more to do.
signature.asc
Description: This is a digitally signed message part
