Source: lepton Version: 1.0-2 Severity: grave Tags: security upstream Justification: user security hole
Hi, Multiple issues were found in lepton. The CVE request was at http://www.openwall.com/lists/oss-security/2016/07/17/1 referencing https://github.com/dropbox/lepton/issues/26 (note to compile with address sanitizer to reproduce the issues). lepton got several CVE assigned in subsequent http://www.openwall.com/lists/oss-security/2016/07/17/6 I'm not sure if current master fixes all the reported cases from #26. Regards, Salvatore
