[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#535909: marked as done (camlimages: CVE-2009-2295 several integer overflows)

Your message dated Sat, 8 Aug 2009 10:43:37 +0200
with message-id <20090808084337.GC19013@yocto.gallu.homelinux.org>
and subject line no more CVE-2009-2295
has caused the Debian Bug report #535909,
regarding camlimages: CVE-2009-2295 several integer overflows
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org

535909: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=535909
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message ---
package: camlimages
version: 2.20-8
severity: serious
tags: security


camlimages is vulnerable to several integer overflows [1].  this has
not yet been fixed upstream, but has been addressed by redhat [2].

[1] http://www.ocert.org/advisories/ocert-2009-009.html
[2] https://bugzilla.redhat.com/show_bug.cgi?id=509531

--- End Message ---
--- Begin Message ---

This bug has been solved with 1:3.0.1-2 before the bug was opened. 

Sylvain Le Gall

--- End Message ---

Reply to: