[Bug 1148736] VUL-0: CVE-2019-15767: gnuchess: In GNU Chess 6.2.5, there is a stack-based buffer overflow in the cmd_load function in frontend/cmd.cc via a crafted chess position in an EPD file.

http://bugzilla.suse.com/show_bug.cgi?id=1148736 http://bugzilla.suse.com/show_bug.cgi?id=1148736#c4 Wolfgang Frisch changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution|--- |WONTFIX --- Comment #4 from Wolfgang Frisch --- This vulnerability is neutralized by the default SUSE toolchain which uses gcc -fstack-protector. We can close this bug and wait for upstream to release a new version. -- You are receiving this mail because: You are on the CC list for the bug.