Re: List of RC-buggy source packages by maintainer/uploader

To: debian-devel@lists.debian.org
Subject: Re: List of RC-buggy source packages by maintainer/uploader
From: Nico Golde <nico@ngolde.de>
Date: Tue, 7 Oct 2008 14:34:43 +0200
Message-id: <[🔎] 20081007123442.GE15057@ngolde.de>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 87y711ovgh.fsf@faui44a.informatik.uni-erlangen.de>
References: <20081006164449.GC23237@melusine.alphascorpii.net> <[🔎] 20081006192851.GA593@xanadu.blop.info> <[🔎] 87y711ovgh.fsf@faui44a.informatik.uni-erlangen.de>

Hi Reinhard,
* Reinhard Tartler <siretart@debian.org> [2008-10-07 13:09]:
> Lucas Nussbaum <lucas@lucas-nussbaum.net> writes:
> 
> > Reinhard Tartler <siretart@tauware.de>
> >    xine-lib (#498243)
> 
> Needs help. That report is a security report from ocert. The full report
> can be seen here: http://www.ocert.org/analysis/2008-008/analysis.txt
> 
> all fixes from 1.1.15 are backported to debian's 1.1.14 package already,
> what is missing are issues 3A-3G.

Can you make the patch available somewhere? Last time I 
looked at the there were some fixes in the code that didn't 
actually fix the vulnerability.

Cheers
Nico
-- 
Nico Golde - http://www.ngolde.de - nion@jabber.ccc.de - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.

Reply to:

References:
- List of RC-buggy source packages by maintainer/uploader
  - From: Lucas Nussbaum <lucas@lucas-nussbaum.net>
- Re: List of RC-buggy source packages by maintainer/uploader
  - From: Reinhard Tartler <siretart@debian.org>

Prev by Date: Re: mpeg encoder patents, Was: Bug#501190: ITP: moonlight
Next by Date: Re: List of RC-buggy source packages by maintainer/uploader
Previous by thread: Re: List of RC-buggy source packages by maintainer/uploader
Next by thread: Re: List of RC-buggy source packages by maintainer/uploader
Index(es):
- Date
- Thread