http://bugzilla.opensuse.org/show_bug.cgi?id=1002621
http://bugzilla.opensuse.org/show_bug.cgi?id=1002621#c5
--- Comment #5 from Mikhail Kasimov
(In reply to Denisart Benjamin from comment #3)
Ok but can you attach a patch or at least a link to a commit ?
've written an email to FreeImage developer (http://freeimage.sourceforge.net/contact.html). Waiting for his answer.
UPD: https://security-tracker.debian.org/tracker/CVE-2016-5684 See "Note" section: http://freeimage.cvs.sourceforge.net/viewvc/freeimage/FreeImage/Source/FreeImage/PluginXPM.cpp?r1=1.17&r2=1.18 http://freeimage.cvs.sourceforge.net/viewvc/freeimage/FreeImage/Source/FreeImage/PluginXPM.cpp?r1=1.18&r2=1.19 -- You are receiving this mail because: You are on the CC list for the bug.