[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [Pkg-xfce-devel] xfce4 stable update for CVE-2007-6351

On Wed, Jan 30, 2008 at 12:58:08AM +0100, Nico Golde wrote:
> the following CVE (Common Vulnerabilities & Exposures) ids were
> published for xfce4 some time ago.

for xfce4?  These concern libexif.  Did you paste the wrong CVEs?

> CVE-2007-6351[0]:
> | libexif 0.6.16 and earlier allows context-dependent attackers to cause
> CVE-2007-6352[1]:
> | Integer overflow in libexif 0.6.16 and earlier allows

----------(  In most countries selling harmful things like   )----------
----------(  drugs is punishable. How come then that people  )----------
Simon ----(    sell Microsoft software and go unpunished?    )---- Nomis
                             Htag.pl 0.0.22

Attachment: signature.asc
Description: Digital signature

Reply to: