[Bug 200980] lang/chicken: CVE-2015-4556: out-of-bounds read in CHICKEN Scheme's string-translate* procedure

Sat Jun 20 02:05:12 UTC 2015

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=200980

            Bug ID: 200980
           Summary: lang/chicken: CVE-2015-4556: out-of-bounds read in
                    CHICKEN Scheme's string-translate* procedure
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Some People
          Priority: ---
         Component: Individual Port(s)
          Assignee: freebsd-ports-bugs at FreeBSD.org
          Reporter: jason.unovitch at gmail.com
                CC: vmagerya at gmail.com
                CC: vmagerya at gmail.com
             Flags: maintainer-feedback?(vmagerya at gmail.com)

Chicken has recently been assigned a CVE for an out of bounds read issue.
http://openwall.com/lists/oss-security/2015/06/15/4

This is planned to be fixed in a future 4.10 release.
http://lists.nongnu.org/archive/html/chicken-announce/2015-06/msg00010.html

There is a patch available from upstream available here in light of 4.10 not
being available.
http://lists.nongnu.org/archive/html/chicken-hackers/2015-06/msg00037.html

-- 
You are receiving this mail because:
You are the assignee for the bug.