Hosting Provided By

Re: [USN-515-1] t1lib vulnerability

From: 3APA3A <3APA3A(at)SECURITY.NNOV.RU>
Date: Fri Sep 21 2007 - 08:30:31 EDT

Dear Kees Cook,

CVE-2007-4033 is "Buffer overflow in php_gd2.dll in the gd (PHP_GD2) extension in PHP 5.2.3 allows context-dependent attackers to execute arbitrary code via a long argument to the imagepsloadfont function."

Please, provide valid CVE entry.

--Thursday, September 20, 2007, 12:18:02 AM, you wrote to ubuntu-security-announce@lists.ubuntu.com:

KC> =========================================================== 
KC> Ubuntu Security Notice USN-515-1         September 19, 2007
KC> t1lib vulnerability

KC> CVE-2007-4033

KC> ===========================================================

--

~/ZARAZA http://securityvulns.com/
Sir Isaac Newton discovered an apple falling to the ground (Mark Twain) Received on Fri Sep 21 13:19:46 2007

This message: [ Message body ]
Next message: h3llcode(at)hotmail.it: "Neuron News 1.0 Local file inclusion (index.php)"
Previous message: Steve Kemp: "[SECURITY] [DSA 1377-1] New fetchmail packages fix denial of service"
In reply to: Kees Cook: "[USN-515-1] t1lib vulnerability"
Next in thread: Ismail Dönmez: "Re: [Full-disclosure] [USN-515-1] t1lib vulnerability"
Reply: Ismail Dönmez: "Re: [Full-disclosure] [USN-515-1] t1lib vulnerability"
Reply: Kees Cook: "Re: [USN-515-1] t1lib vulnerability"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Sun Oct 28 2007 - 06:16:48 EDT