Re: Accepted osh 1.7-13 (i386 source)

To: debian-release@lists.debian.org
Cc: Oohara Yuuma <oohara@debian.org>
Subject: Re: Accepted osh 1.7-13 (i386 source)
From: Joey Hess <joeyh@debian.org>
Date: Thu, 26 May 2005 20:16:31 -0400
Message-id: <[🔎] 20050527001631.GE29363@kitenet.net>
Mail-followup-to: debian-release@lists.debian.org, Oohara Yuuma <oohara@debian.org>
In-reply-to: <E1DbSJP-0001Az-00@newraff.debian.org>
References: <E1DbSJP-0001Az-00@newraff.debian.org>

Oohara Yuuma wrote:
>    * urgency set to high because this version fixes a buffer overflow
>      that causes unauthorized privilege escalation (thanks to Charles Stevenson
>      <core@bokeoa.com> for the bug report)
>    * main.c: s/strcpy/strncpy/ and s/strcat/strncat/ to avoid a buffer overflow

Reviewed and approved for sarge. In the future please try to make sure
security holes have an entry in the BTS. For one thing, doesn't this
still affect woody?

-- 
see shy jo

Attachment: signature.asc
Description: Digital signature

Reply to:

Follow-Ups:
- Re: Accepted osh 1.7-13 (i386 source)
  - From: Oohara Yuuma <oohara@libra.interq.or.jp>

Prev by Date: FWD: Accepted imagemagick 6:6.0.6.2-2.4 (i386 source)
Next by Date: Please let oregano into testing again
Previous by thread: Re: FWD: Accepted imagemagick 6:6.0.6.2-2.4 (i386 source)
Next by thread: Re: Accepted osh 1.7-13 (i386 source)
Index(es):
- Date
- Thread