Re: [pkg-mono-group] CVE-2010-1526: overflows in TIFF, JPEG, DIP decoding

To: Jo Shields <directhex@apebox.org>
Cc: Moritz Muehlenhoff <jmm@inutil.org>, debian-release@lists.debian.org
Subject: Re: [pkg-mono-group] CVE-2010-1526: overflows in TIFF, JPEG, DIP decoding
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Thu, 02 Sep 2010 23:10:19 +0100
Message-id: <[🔎] 1283465420.17480.133.camel@kaa.jungle.aubergine.my-net-space.net>
In-reply-to: <[🔎] 1283339705.15953.101.camel@osc-bigmac>
References: <87pqx8im3q.fsf@mid.deneb.enyo.de> <20100831160808.GC6587@inutil.org> <[🔎] 1283339705.15953.101.camel@osc-bigmac>

On Wed, 2010-09-01 at 12:15 +0100, Jo Shields wrote:
> On Tue, 2010-08-31 at 18:08 +0200, Moritz Muehlenhoff wrote:
> > On Tue, Aug 24, 2010 at 08:03:05AM +0200, Florian Weimer wrote:
> > > | Secunia Research has discovered three vulnerabilities in libgdiplus 
> > > | for Mono, which can be exploited by malicious people to compromise an
> > > | application using the library.
[...]
> > Debian Mono maintainers, can you fix this in a point update?
> 
> I've uploaded 1.9-1+lenny1, which will be sat in the queue.

Flagged for acceptance for 5.0.7 (so in p-u-new for another few days
until 5.0.6 is done).

Regards,

Adam

Reply to:

References:
- Re: [pkg-mono-group] CVE-2010-1526: overflows in TIFF, JPEG, DIP decoding
  - From: Jo Shields <directhex@apebox.org>

Prev by Date: Bug#592421: unblock: groovy/1.7.4-1
Next by Date: Bug#595303: marked as done (unblock: gitolite/1.5.4-1)
Previous by thread: Re: [pkg-mono-group] CVE-2010-1526: overflows in TIFF, JPEG, DIP decoding
Next by thread: Re: Permission to upload security fix release of tryton-modules-stock
Index(es):
- Date
- Thread