Hi,
On Tue, Nov 12, 2013 at 2:39 AM, David Claughton wrote:
> I have a fix for this in git which is more or less ready, expect that
> the repo is on Alioth which is down right now. I'll see about getting
> it uploaded as soon as it is operational again.
It's operational now. :)
--
Cheers,
Mar
tags 729273 + pending
thanks
Hi,
I have a fix for this in git which is more or less ready, expect that
the repo is on Alioth which is down right now. I'll see about getting
it uploaded as soon as it is operational again.
Cheers,
David.
On 11/11/13 02:23, Sang Kil Cha wrote:
> Package: gra
Package: graphviz
Version: 2.26.3-14
Severity: grave
Tags: security
Justification: user security hole
dijkstra (also nop) has a buffer overflow vulnerability. A PoC file is
attached.
command line to reproduce:
$ /usr/bin/dijkstra a < foo
or
$ /usr/bin/nop foo
Program received signal SIGSEGV, S
3 matches
Mail list logo
