Re: Wheezy update of firebird2.5?
-=| Antoine Beaupré, 17.04.2018 12:59:26 -0400 |=-
> I don't quite know where to go from here. I was somewhat hoping that
> Wheezy would be magically not vulnerable to this issue, but obviously,
> there's something wrong here that should probably be fixed.
The only fix upstream has is to disable UDFs in firebird.conf --
https://salsa.debian.org/firebird-team/firebird3.0/blob/master/debian/patches/deb/cve-2017-11509.patch
(probebly needs adaptation for firebird2.5, but you get the idea).
-- dam
Reply to: