Hosting Provided By

Re: Bug#439927: t1lib security flaw: CVE-2007-4033/#439927

From: Steffen Joeris <steffen.joeris(at)skolelinux.de>
Date: Fri Sep 28 2007 - 07:14:38 EDT

On Fri, 28 Sep 2007 08:39:13 pm Ionut Georgescu wrote:
> On Thu, 2007-09-27 at 20:12 +0200, Torsten Werner wrote:
> > On 9/17/07, Torsten Werner <mail.twerner@googlemail.com> wrote:
> > > On 9/16/07, Artur R. Czechowski <arturcz@hell.pl> wrote:
> > > > The t1lib 5.1.0 available in Debian (either etch as lenny and sid[1])
> > > > is vulnerable to CVE-2007-4033 security flaw.
> > >
> > > I have uploaded a new package to unstable that can be easily
> > > backported to etch/lenny. I am attaching the output of debdiff.
> >
> > Do you plan to update the package through security.debian.org?
> >
> > Cheers,
> > Torsten

Sorry for the late reply.

For testing-security that is no longer necessarry, because it migrated to testing and it was announced in the last testing-security announcement[0].

The rest is up to the stable security team.

Cheers
Steffen

[0]:
http://lists.alioth.debian.org/pipermail/secure-testing-announce/2007-September/000060.html

-- 
To UNSUBSCRIBE, email to debian-security-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org


application/pgp-signature attachment: This is a digitally signed message part.

Received on Fri Sep 28 07:09:07 2007

This message: [ Message body ]
Next message: Holger Levsen: "Re: [SECURITY] [DSA 1378-1] New Linux 2.6.18 packages fix several vulnerabilities"
Previous message: Ionut Georgescu: "Re: Bug#439927: t1lib security flaw: CVE-2007-4033/#439927"
In reply to: Ionut Georgescu: "Re: Bug#439927: t1lib security flaw: CVE-2007-4033/#439927"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Sun Oct 07 2007 - 07:53:06 EDT