http://bugzilla.opensuse.org/show_bug.cgi?id=1018756 Bug ID: 1018756 Summary: VUL-0: icoutils: exploitable crash in wrestool programm Classification: openSUSE Product: openSUSE Distribution Version: Leap 42.2 Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: security-team@suse.de Reporter: mikhail.kasimov@gmail.com QA Contact: qa-bugs@suse.de Found By: --- Blocker: --- Ref: http://seclists.org/oss-sec/2017/q1/38 ============================================= Hi Choongwoo Han reported[0] an exploitable crash in wrestool from the icoutils[1]. The command line tools is e.g. used in KDE's metadataparsing, c.f. [2]. A patch is available in the Debian packaging[3]. Could you please assign a CVE for this issue? Regards, Salvatore [0] https://bugs.debian.org/850017 [1] http://www.nongnu.org/icoutils/ [2] https://codesearch.debian.net/search?q=wrestool&perpkg=1 [3] https://anonscm.debian.org/git/users/cjwatson/icoutils.git/plain/debian/patc... ============================================= https://software.opensuse.org/package/icoutils -- You are receiving this mail because: You are on the CC list for the bug.