Re: libosip2 and libosip2-3
Steve,
> Yasuhiro,
>
> On Thu, May 12, 2005 at 12:25:41AM +0900, ARAKI Yasuhiro wrote:
> > In conclusion, we should ship libosip2 2.0.6 with sarge.
> > And I will fix for 2.0.6. It includes a potential security risk.
> > It is same as #305729.
>
> Well, the conclusion of my previous message was that, even though I don't
> like the situation, libosip2 2.2.0 and siproxd have both been accepted into
> sarge. The new versions have already reached testing.
Thanks.
And I apologies for the error and any inconvenience.
I worried about a "URI Parsing Heap Overflows" problem at libosip2 2.0.6
as #308737. (It was not included in after 2.0.7.)
> But it does show that it's important for maintainers of related packages to
> communicate.
I take your warning to heart..
Thanks again.
--
ARAKI Yasuhiro
A Debian Official Developer <ar@debian.org>
Reply to: