Bug#560940: CVE-2009-3560 and CVE-2009-3720 denial-of-services

To: 560940@bugs.debian.org
Cc: Ben Hutchings <ben@decadent.org.uk>
Subject: Bug#560940: CVE-2009-3560 and CVE-2009-3720 denial-of-services
From: Sylvain Beucler <beuc@beuc.net>
Date: Thu, 24 Dec 2009 12:35:41 +0100
Message-id: <[🔎] 20091224113541.GA14875@perso.beuc.net>
Reply-to: Sylvain Beucler <beuc@beuc.net>, 560940@bugs.debian.org
In-reply-to: <[🔎] 20091215123130.GA16920@perso.beuc.net>
References: <[🔎] 20091214225836.GA32115@perso.beuc.net> <handler.560940.B560940.12608315265661.ackinfo@bugs.debian.org> <20091214233922.GB32115@perso.beuc.net> <[🔎] 20091215123130.GA16920@perso.beuc.net>

On Tue, Dec 15, 2009 at 01:31:30PM +0100, Sylvain Beucler wrote:
> Patched package available at:
> http://mentors.debian.net/cgi-bin/sponsor-pkglist?action=details;package=tla

Ben noticed that part of the bundled libexpat was still used.

I missed 2 "-I ../lib/expat" occurrences, I'll upload a new version in
a bit.

-- 
Sylvain

Attachment: signature.asc
Description: Digital signature

Reply to:

Follow-Ups:
- Bug#560940: CVE-2009-3560 and CVE-2009-3720 denial-of-services
  - From: Sylvain Beucler <beuc@beuc.net>

References:
- Bug#560940: CVE-2009-3560 and CVE-2009-3720 denial-of-services
  - From: Sylvain Beucler <beuc@beuc.net>
- Bug#560940: CVE-2009-3560 and CVE-2009-3720 denial-of-services
  - From: Sylvain Beucler <beuc@beuc.net>

Prev by Date: Bug#562373: valknut: FTBFS: Nonexistent build-dependency: libdc0-dev
Next by Date: Bug#562407: graphviz: Depends on python2.4 packages
Previous by thread: Bug#560940: CVE-2009-3560 and CVE-2009-3720 denial-of-services
Next by thread: Bug#560940: CVE-2009-3560 and CVE-2009-3720 denial-of-services
Index(es):
- Date
- Thread