Ubuntu
tiff package

  1. Dapper (6.06)
  2. Bug #380149
  3. Comment #9

Comment 9 for bug 380149

Revision history for this message
Kees Cook (kees) wrote :

Rather, it's walking backwards off the heap. 0x8effff is just before the heap allocation at 0x8f0000. wololo's discussion of the issue is here:
http://www.lan.st/showthread.php?t=1856&page=3