Bug#812207: CVE-2016-0728

To: Ben Hutchings <ben@decadent.org.uk>
Cc: 812207@bugs.debian.org
Subject: Bug#812207: CVE-2016-0728
From: Zachary Loafman <zml@google.com>
Date: Mon, 25 Jan 2016 17:06:51 -0800
Message-id: <[🔎] CAB64qSjjzNrsiq2Vp31_3aN50tBnB7rQ5_Jj4qLqp5ybNhYnNQ@mail.gmail.com>
Reply-to: Zachary Loafman <zml@google.com>, 812207@bugs.debian.org
In-reply-to: <[🔎] 1453769336.3734.256.camel@decadent.org.uk>
References: <[🔎] CAB64qSjo6U0opK28kNLxvXG3Zy=v8V5vnbRgV5m1UEYUkPZ0bg@mail.gmail.com> <[🔎] 1453769336.3734.256.camel@decadent.org.uk>

On Jan 25, 2016 4:49 PM, "Ben Hutchings" <ben@decadent.org.uk> wrote:
>
> On Mon, 2016-01-25 at 15:23 -0800, Zachary Loafman wrote:
> > Can this issue be treated with high importance?
>
> You would have got a faster response if you had reported the bug
> against a real package name in the first place.

Apologies, I'm not actually original reporter. I was notified of the bug report today and it matches something we found in internal testing after using an image that had the CVE fixed. Anyone who updates to fix that CVE may run across the same.

Reply to:

Follow-Ups:
- Bug#812207: CVE-2016-0728
  - From: Ben Hutchings <ben@decadent.org.uk>

References:
- Bug#812207: CVE-2016-0728
  - From: Zachary Loafman <zml@google.com>
- Bug#812207: CVE-2016-0728
  - From: Ben Hutchings <ben@decadent.org.uk>

Prev by Date: Bug#812207: CVE-2016-0728
Next by Date: Bug#812207: CVE-2016-0728
Previous by thread: Bug#812207: CVE-2016-0728
Next by thread: Bug#812207: CVE-2016-0728
Index(es):
- Date
- Thread