Bug#838960: denial of service with crafted id3v2 tags in all mpg123 versions since 0.60
carnil at debian.org
Wed Oct 5 19:34:49 UTC 2016
On Fri, Sep 30, 2016 at 08:05:14AM +0200, Thomas Orgis wrote:
> Am Thu, 29 Sep 2016 01:20:05 +0200
> schrieb Thomas Orgis <thomas-forum at orgis.org>:
> > Still nothing. I don't expect anything to arrive anymore. Perhaps that
> > Google Docs form was a joke anyway. So, please let's just get a number
> > via Debian and get on with it.
> Nope, eh … yes. I got a reply now from the distributed weakness
> reporting project and probably a CVE will follow. Sorry if I'm causing
> a mess with this. It is my first time getting involved in this directly.
Any news from the DWF project on the assigned CVE?
More information about the pkg-multimedia-maintainers