On Wed, 28 Jan 2015 11:49+0100, Fabian Keil wrote: > Pawel Biernacki <pawel.bierna...@gmail.com> wrote: > > > I found very worrying statement in that document: > > > > "2015-01-27: FreeBSD informs us that after going through their mail archive > > they found out that the same issue was reported by Google and that they > > missed it." > > > > How many other such mails were missed? > > I can't answer this question, but I reported a couple of ggated issues > (DoS, non-critical memory disclosure) in December: > > 2014-12-09: Initial notification sent with potential patches. > 2014-12-18: The mail was acknowledged and additional information requested. > 2014-12-19: A more verbose description of the issue was sent as requested. > 2015-01-15: I asked for a status update, preferably before FOSDEM. > > I haven't heard back yet and don't know when the issues will be addressed.
Just out of curiosity, shouldn't size_t be used for indexing? -- +-------------------------------+------------------------------------+ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +-------------------------------+------------------------------------+ _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscr...@freebsd.org"
