[v2.6] libmms: heap-based buffer overflow in the get_answer function (CVE-2014-2892)
Heap-based buffer overflow in the get_answer function in mmsh.c in libmms before 0.6.4 allows remote attackers to execute arbitrary code via a long line in an MMS over HTTP (MMSH) server response.
•MLIST:[oss-security] 20140418 Re: libmms heap-based buffer overflow
(from redmine: issue id 2909, created on 2014-05-20, closed on 2014-05-23)
- parent #2907 (closed)
- Revision c543e695 by Natanael Copa on 2014-05-22T14:49:40Z:
main/libmms: security upgrade to 0.6.4 (CVE-2014-2892) fixes #2909