Source: libopenmpt
Version: 0.2.7386~beta20.3-3
Severity: important
Tags: upstream
Dear Maintainer,
A couple of security-related fixes have been released upstream as version
0.2.7386-beta20.3-p7. See
https://lib.openmpt.org/libopenmpt/md_announce-2017-06-02.html .
These most importantly fix a c
Control: tags -1 security
Hi,
On 05/06/17 07:03, Jörn Heusipp wrote:
> Source: libopenmpt
> Version: 0.2.7386~beta20.3-3
> Severity: important
> Tags: upstream
>
> Dear Maintainer,
>
> A couple of security-related fixes have been released upstream as
> version 0.2.7386-beta20.3-p7. See
> http
Hi,
On 06/07/2017 11:45 AM, James Cowgill wrote:
On 05/06/17 07:03, Jörn Heusipp wrote:
A couple of security-related fixes have been released upstream as
version 0.2.7386-beta20.3-p7. See
https://lib.openmpt.org/libopenmpt/md_announce-2017-06-02.html
These most importantly fix a couple of p
I don't understand patch p6 well enough to say how
serious it is (depends on where the invalid pointer being dereferenced
comes from).
As far as I know, it is just a NULL pointer. Johannes did the analysis
and might be able to elaborate (CCed).
Correct. I am not sure if it is possible at al
Hi,
On 08/06/17 13:23, Johannes Schultz wrote:
>>> I don't understand patch p6 well enough to say how
>>> serious it is (depends on where the invalid pointer being dereferenced
>>> comes from).
>>
>> As far as I know, it is just a NULL pointer. Johannes did the analysis
>> and might be able to ela
Hi,
I guess it depends on what you define as "reasonable". Depending on the
malformed file and setup, they may take minutes to load (given that
enough (virtual) memory is available to load all the truncated samples).
The test cases that were generated by American Fuzzy Lop were about 5KB
in size
On 08/06/17 23:10, Johannes Schultz wrote:
> Hi,
>
>>> I guess it depends on what you define as "reasonable". Depending on the
>>> malformed file and setup, they may take minutes to load (given that
>>> enough (virtual) memory is available to load all the truncated samples).
>>> The test cases tha
Am 12.06.2017 um 18:17 schrieb James Cowgill:
On 08/06/17 23:10, Johannes Schultz wrote:
Hi,
I guess it depends on what you define as "reasonable". Depending on the
malformed file and setup, they may take minutes to load (given that
enough (virtual) memory is available to load all the truncate
Hi security team,
On 07/06/17 10:45, James Cowgill wrote:
> On 05/06/17 07:03, Jörn Heusipp wrote:
>> Source: libopenmpt Version: 0.2.7386~beta20.3-3 Severity:
>> important Tags: upstream
>>
>> Dear Maintainer,
>>
>> A couple of security-related fixes have been released upstream
>> as version 0
Hi James,
On Sun, Jun 25, 2017 at 11:09:05PM +0100, James Cowgill wrote:
> Hi security team,
>
> On 07/06/17 10:45, James Cowgill wrote:
> > On 05/06/17 07:03, Jörn Heusipp wrote:
> >> Source: libopenmpt Version: 0.2.7386~beta20.3-3 Severity:
> >> important Tags: upstream
> >>
> >> Dear Maintai
Processing control commands:
> tags -1 security
Bug #864195 [src:libopenmpt] libopenmpt: Security updates
libopenmpt-0.2.7386-beta20.3-p7 available
Added tag(s) security.
--
864195: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864195
Debian Bug Tracking System
Contact ow...@bugs.debian.org
11 matches
Mail list logo
