On Fri, Dec 03, 2004 at 04:32:02PM +0100, Robert Luberda wrote: > mailx (1:8.1.2-0.20040524cvs-3) unstable; urgency=medium > > * fio.c: Fix segfault on wildcard expansion introduced in previous upload. > Thanks to Yuri D'Elia for noticing this (see bug#148389). > > -- Robert Luberda <robert@debian.org> Sat, 13 Nov 2004 22:23:14 +0100 > > mailx (1:8.1.2-0.20040524cvs-2) unstable; urgency=medium > > * Bugfix release (closes: #278748): > + fio.c: Use wordexpr() instead of calling /bin/echo not to allow > executing external commands while expanding shell variables > and wildcards. > + names.c: isfileaddr function return false if '@', '!' or '%' i > characters occur anywhere (e.g not only before the slash) in the > recipient name. > > -- Robert Luberda <robert@debian.org> Wed, 3 Nov 2004 20:46:39 +0100 > The unstable version of mailx fixes bug#278748, which in some cases > could lead to a security problem. > Although the changes between 1:8.1.2-0.20040524cvs-1 > and 1:8.1.2-0.20040524cvs-3 are not so small, I think, > they are well tested. Approved. Thanks, -- Steve Langasek postmodern programmer
Attachment:
signature.asc
Description: Digital signature