[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bug#756325: CVE-2014-5044: gfortran integer overflows

Control: tags -1 moreinfo
Control: severity -1 wishlist

Am 28.07.2014 um 22:10 schrieb Michael
> package: src:gcc-4.4, src:gcc-4.6, src:gcc-4.7, src:gcc-4.8, src:gcc-4.9
> severity: serious
> tags: security
> Several integer overflow issues affecting all gcc versions have been
> fixed in libgfortran:
> http://www.openwall.com/lists/oss-security/2014/07/23/7
> Best wishes,

maybe better wishful thinking? you should better stop filing "security" issues,
and better spend your time replying to the ones where more information is needed.

Florian Weimer is still listed as a member of the security team, although he
doesn't seem to do *anything* for Debian currently (apparently employed by Red
Hat).  So please catch up within the debian-security team first where you have
the better expertise, and pretty please don't bother anyone else before
addressing this within the security team.

thanks, and "best wishes", Matthias

Reply to: