[Libreoffice-bugs] [Bug 118514] overflow at realpath()
bugzilla-daemon at bugs.documentfoundation.org
bugzilla-daemon at bugs.documentfoundation.org
Mon Aug 13 10:01:27 UTC 2018
https://bugs.documentfoundation.org/show_bug.cgi?id=118514
Stephan Bergmann <sbergman at redhat.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Resolution|--- |NOTOURBUG
Status|UNCONFIRMED |RESOLVED
--- Comment #6 from Stephan Bergmann <sbergman at redhat.com> ---
(In reply to Dhiraj from comment #4)
> In FreeBSD libc
Assuming this alludes to <https://nvd.nist.gov/vuln/detail/CVE-2018-11236>
about "stdlib/canonicalize.c in the GNU C Library", lets close this as
NOTOURBUG. (Also see the discussion at
<https://bugzilla.redhat.com/show_bug.cgi?id=1614165> "CVE-2018-14939
libreoffice: Use of realpath() in desktop/unx/source/start.c:get_app_path()
allows for potential buffer overflow".)
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.freedesktop.org/archives/libreoffice-bugs/attachments/20180813/373bf85c/attachment.html>
More information about the Libreoffice-bugs
mailing list