[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

firebird2.1 and CVE-2013-2492: remove or update?



Hi,

firebird2.1 packages were removed from sid/wheezy, but there is 
a backport still available. Thing is, the version is vulnerable to 
a remote pre-authentication buffer overflow 
(http://www.debian.org/security/2013/dsa-2647).

What would be the recommended action: update the backport (similarly 
to what was done for squeeze) or remove it?

Attachment: signature.asc
Description: Digital signature


Reply to: