Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 446870 - dev-tcltk/snack : multiple buffer overflows
Summary: dev-tcltk/snack : multiple buffer overflows
Status: RESOLVED DUPLICATE of bug 446822
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL: https://bugzilla.redhat.com/show_bug....
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2012-12-11 12:23 UTC by Agostino Sarubbo
Modified: 2012-12-11 12:36 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Agostino Sarubbo gentoo-dev 2012-12-11 12:23:34 UTC 
From $URL :

CVE-2012-6303 was assigned by MITRE to multiple buffer overflows in WaveSurfer (not shipped) and 
the Snack Sound Toolkit (tcl-snack):

Disclosures:    http://www.exploit-db.com/exploits/19772/
                http://secunia.com/advisories/49889/
Product source: http://www.speech.kth.se/snack/
                http://wavesurfer.svn.sourceforge.net/viewvc/wavesurfer/trunk/wavesurfer/
                (The www.speech.kth.se site refers to "Snack v2.2.10
                 released December 01 Bug fix release" but this is
                 apparently about December 01 2004 -- not about a 2012
                 release.)

No fix is available as of yet.
Comment 1 Sean Amoss (RETIRED) gentoo-dev Security 2012-12-11 12:36:54 UTC 

*** This bug has been marked as a duplicate of bug 446822 ***