t1lib security flaw: CVE-2007-4033/#439927

forwarded 439927 rainer.menzner@web.de
tag 439927 patch confirmed upstream
severity 439927 serious
found 439927 5.1.0-2
thanks

Hi,
The t1lib 5.1.0 available in Debian (either etch as lenny and sid[1]) is vulnerable to CVE-2007-4033 security flaw. Upstream version 5.1.1 is vulnerable too. Upstream has been informed about the issue.

I attached a patch solving the issue.

Best regards

        Artur

[1] sarge probably too, I didn't check it.

-- 
Po co mamy ze sob± rozmawiaæ, skoro tak ³atwo siê komunikowaæ?
						/Jean Baudrillard/

-- To UNSUBSCRIBE, email to debian-security-REQUEST@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Do you need help?

In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software: Learn more about Pantek's Technical Support offerings Place an order for 24/7/365 Technical Support here Learn more about Pantek, who we are, and what we do Chat with a Live Operator Related lists.debian.org Links debian-announce debian-apache debian-arm-changes debian-beowulf debian-boot debian-cd debian-cd-vendors debian-changes debian-changes-digest debian-isp debian-kde debian-laptop debian-mirrors-announce debian-news debian-security debian-security-announce debian-testing debian-user debian-user-digest Request more information about Pantek