[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#876001: libwpd: CVE-2017-14226

Hi Rene!

On Sun, Sep 17, 2017 at 02:54:12PM +0200, Rene Engelhard wrote:
> Hi again,
> 
> On Sun, Sep 17, 2017 at 01:59:20PM +0200, Rene Engelhard wrote:
> > On Sun, Sep 17, 2017 at 10:47:06AM +0200, Salvatore Bonaccorso wrote:
> > > Source: libwpd
> > > Version: 0.10.1-5
> > > Severity: important
> > > Tags: patch security upstream
> > > Forwarded: https://sourceforge.net/p/libwpd/tickets/14/
> > > 
> > > Hi,
> > > 
> > > the following vulnerability was published for libwpd.
> > >
> > > CVE-2017-14226[0]:
> > [...]
> > 
> > fixed in 0.10.2-1 for sid. Want this fixed as DSAs for jessie/stretch?
> 
> Ah, nevermind. I should have looked at the security tracker :):
> 
> [stretch] - libwpd <no-dsa> (Minor issue)
> [jessie] - libwpd <no-dsa> (Minor issue)
> 
> OK.

Thanks for the quick updates, impressing :)

> It's in git now, for a possible later fix we can include this, too.

Sicne the point releases are approaching, can you shedule the fixes
since already prepared in the next point release?

Regards and thanks again for your work,
Salvatore
Reply to: