Re: final report on all woody DSAs and sarge

To: debian-release@lists.debian.org
Subject: Re: final report on all woody DSAs and sarge
From: Peter Makholm <peter@makholm.net>
Date: Thu, 12 Aug 2004 09:43:44 +0200
Message-id: <[🔎] 878yck7qdr.fsf@xyzzy.adsl.dk>
References: <[🔎] 20040812014203.GA1997@kitenet.net>

Joey Hess <joeyh@debian.org> writes:

> [11 Jun 2003] DSA-316 nethack - buffer overflow, incorrect permissions
> 	{CAN-2003-0358 CAN-2003-0359}
> 	- nethack 3.4.1-1
> 	NOTE: DSA contains some strange non-nethack version numbers

We have a number of nathack variants sharing the same codebase which
all included the buffer overflow-bug (CAN-2003-0358). We have at least
nethack, jnethack, falconseye and slashem.

The advisories for each of these packages is:

  nethack    - DSA-316
  slashem    - DSA-316-2
  jnethack   - DSA-316-3
  falconseye - DSA-350

I have no idea why there wasn't filed individual advisories for each
package. Slashem is fixed in testing (0.0.6E4F8-6) and jnethack is
also fixed in testing (1.1.5-15) 

-- 
 Peter Makholm     |                                 Wisdom has two parts:
 peter@makholm.net |                           1) having a lot to say, and
 http://hacking.dk |                                      2) not saying it

Reply to:

References:
- final report on all woody DSAs and sarge
  - From: Joey Hess <joeyh@debian.org>

Prev by Date: Re: Hinting pcsc*
Next by Date: Re: final report on all woody DSAs and sarge
Previous by thread: Re: final report on all woody DSAs and sarge
Next by thread: Re: final report on all woody DSAs and sarge
Index(es):
- Date
- Thread